Red Hat Bugzilla – Bug 332211
Tricking sysreport into running 'rm -rf /' critical data loss
Last modified: 2009-12-16 11:39:18 EST
+++ This bug was initially created as a clone of Bug #332041 +++
Escalated to Bugzilla from IssueTracker
-- Additional comment from email@example.com on 2007-10-15 08:22 EST --
RHEL5 sysreport can be tricked into removing data in two different ways
When prompted for case number the input is not vetted. If the value " / " (space
slash space) is entered the program will attempt to rm -rf /
If no case number is provided the logical name used is derived from two
environment variables which are not checked, $LOGNAME and $HOSTNAME
Created attachment 227651 [details]
Patch to avoid hazardous filenames
Just because these various bugzillas contain many of the same words does not
mean they are the same bugs.
Kindly re-read this report.
sos now obsoletes sysreport. assign to correct component
This request was evaluated by Red Hat Product Management for
inclusion, but this component is not scheduled to be updated in
the current Red Hat Enterprise Linux release. This request will
be reviewed for a future Red Hat Enterprise Linux release.
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.