Bug 1043850 - yum-rhn-plugin: slightly insecure use of /var/tmp
Summary: yum-rhn-plugin: slightly insecure use of /var/tmp
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: yum-rhn-plugin
Version: 7.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Milan Zázrivec
QA Contact: Martin Minar
URL:
Whiteboard:
Depends On: 1043847
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-12-17 10:51 UTC by Florian Weimer
Modified: 2016-07-04 00:58 UTC (History)
6 users (show)

Fixed In Version: yum-rhn-plugin-2.0.1-4.el7
Doc Type: Bug Fix
Doc Text:
Clone Of: 1043847
Environment:
Last Closed: 2014-06-13 11:23:28 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Florian Weimer 2013-12-17 10:51:17 UTC 
+++ This bug was initially created as a clone of Bug #1043847 +++

touch follows symlinks, so this %pre script allows creation of zero-length files (as seen in yum-rhn-plugin-2.0.1-2):

%pre
# 682820 - re-enable yum-rhn-plugin after package upgrade if the system is already registered
export pluginconf='/etc/yum/pluginconf.d/rhnplugin.conf'
if [ $1 -gt 1 ] && [ -f /etc/sysconfig/rhn/systemid ] && [ -f "$pluginconf" ]; then
    if grep -q '^[[:space:]]*enabled[[:space:]]*=[[:space:]]*1[[:space:]]*$' \
       "$pluginconf"; then
        touch /var/tmp/enable-yum-rhn-plugin
    fi
fi

The flag should be stored somewhere else, perhaps in /etc.
Comment 2 Milan Zázrivec 2014-02-03 15:23:15 UTC 
spacewalk.git master: 7760c859623fa262effcc6aad295f5f5e0383794
Comment 6 Ludek Smid 2014-06-13 11:23:28 UTC 
This request was resolved in Red Hat Enterprise Linux 7.0.

Contact your manager or support representative in case you have further questions about the request.
Note You need to log in before you can comment on or make changes to this bug.