Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
For bugs related to Red Hat Enterprise Linux 5 product line. The current stable release is 5.10. For Red Hat Enterprise Linux 6 and above, please visit Red Hat JIRA https://issues.redhat.com/secure/CreateIssue!default.jspa?pid=12332745 to report new issues.

Bug 332211

Summary: Tricking sysreport into running 'rm -rf /' critical data loss
Product: Red Hat Enterprise Linux 5 Reporter: Martin Poole <mpoole>
Component: sosAssignee: Adam Stokes <astokes>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: urgent    
Version: 5.1CC: agk, azelinka, bmr, tao
Target Milestone: rcKeywords: ZStream
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: GSSApproved
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
: 502455 548113 (view as bug list) Environment:
Last Closed: 2009-01-20 21:41:29 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 424161    
Attachments:
Description Flags
Patch to avoid hazardous filenames none

Description Martin Poole 2007-10-15 13:10:58 UTC 
+++ This bug was initially created as a clone of Bug #332041 +++

Escalated to Bugzilla from IssueTracker

-- Additional comment from mpoole on 2007-10-15 08:22 EST --
RHEL5 sysreport can be tricked into removing data in two different ways

When prompted for case number the input is not vetted. If the value " / " (space
slash space) is entered the program will attempt to rm -rf /

If no case number is provided the logical name used is derived from two
environment variables which are not checked,  $LOGNAME and $HOSTNAME
Comment 1 Martin Poole 2007-10-15 13:10:58 UTC 
Created attachment 227651 [details]
Patch to avoid hazardous filenames
Comment 7 Martin Poole 2007-10-17 13:22:40 UTC 
Just because these various bugzillas contain many of the same words does not
mean they are the same bugs.

Kindly re-read this report.
Comment 9 Than Ngo 2007-10-23 13:37:53 UTC 
sos now obsoletes sysreport. assign to correct component
Comment 11 RHEL Program Management 2007-12-03 20:46:55 UTC 
This request was evaluated by Red Hat Product Management for
inclusion, but this component is not scheduled to be updated in
the current Red Hat Enterprise Linux release.  This request will
be reviewed for a future Red Hat Enterprise Linux release.
Comment 24 errata-xmlrpc 2009-01-20 21:41:29 UTC 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHBA-2009-0171.html