Bug 1043848 - yum-rhn-plugin: slightly insecure use of /var/tmp
Summary: yum-rhn-plugin: slightly insecure use of /var/tmp
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: yum-rhn-plugin
Version: 5.11
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Milan Zázrivec
QA Contact: Red Hat Satellite QA List
URL:
Whiteboard:
Depends On: 1043847
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-12-17 10:49 UTC by Florian Weimer
Modified: 2014-03-07 12:49 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of: 1043847
Environment:
Last Closed: 2014-03-07 12:49:02 UTC
Target Upstream Version:


Attachments (Terms of Use)

Description Florian Weimer 2013-12-17 10:49:51 UTC
+++ This bug was initially created as a clone of Bug #1043847 +++

touch follows symlinks, so this %pre script allows creation of zero-length files (as seen in yum-rhn-plugin-2.0.1-2):

%pre
# 682820 - re-enable yum-rhn-plugin after package upgrade if the system is already registered
export pluginconf='/etc/yum/pluginconf.d/rhnplugin.conf'
if [ $1 -gt 1 ] && [ -f /etc/sysconfig/rhn/systemid ] && [ -f "$pluginconf" ]; then
    if grep -q '^[[:space:]]*enabled[[:space:]]*=[[:space:]]*1[[:space:]]*$' \
       "$pluginconf"; then
        touch /var/tmp/enable-yum-rhn-plugin
    fi
fi

The flag should be stored somewhere else, perhaps in /etc.

Comment 1 RHEL Program Management 2014-03-07 12:39:07 UTC
This bug/component is not included in scope for RHEL-5.11.0 which is the last RHEL5 minor release. This Bugzilla will soon be CLOSED as WONTFIX (at the end of RHEL5.11 development phase (Apr 22, 2014)). Please contact your account manager or support representative in case you need to escalate this bug.

Comment 2 Florian Weimer 2014-03-07 12:49:02 UTC
This is so minor that touching the component for this bug alone is not worth the effort, so closing.


Note You need to log in before you can comment on or make changes to this bug.