Red Hat Bugzilla – Bug 1210705
CVE-2015-3010 ceph-deploy: keyring permissions are world readable in ~ceph
Last modified: 2016-02-02 15:52:26 EST
ceph-deply versions before 1.5.23 had an issue where keyring permissions were world readable. CVE assigned: http://seclists.org/oss-sec/2015/q2/91 Upstream fix: https://github.com/ceph/ceph-deploy/commit/eee56770393bf19ed2dd5389226c6190c08dee3f
Created ceph-deploy tracking bugs for this issue: Affects: fedora-all [bug 1210706]
Analysis ======== In the following code of ceph-deploy keyring = '/etc/ceph/{cluster}.client.admin.keyring'.format( cluster=args.cluster) r = fetch_file( args=args, frompath=keyring, topath='{cluster}.client.admin.keyring'.format( cluster=args.cluster), _hosts=args.mon, ) It copies the keys without forcing the file permissions which by default leads to 777 which makes it world readable while copying it to all nodes or monitors
ceph-deploy-1.5.23-1.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
ceph-deploy-1.5.23-1.fc21 has been pushed to the Fedora 21 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in the following products: Red Hat Ceph Storage 1.2 for RHEL 7 Red Hat Ceph Storage 1.2 for RHEL 6 Via RHSA-2015:1092 https://access.redhat.com/errata/RHSA-2015:1092
This issue has been addressed in the following products: Red Hat Ceph Storage 1.2 for Ubuntu 12.04 Red Hat Ceph Storage 1.2 for Ubuntu 14.04 Via RHSA-2015:1579 https://access.redhat.com/errata/RHSA-2015:1579
This issue has been addressed in the following products: Red Hat Ceph Storage 1.2 for CentOS 6 Via RHSA-2015:1631 https://access.redhat.com/errata/RHSA-2015:1631