Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 708876 - (CVE-2011-1943) CVE-2011-1943 NetworkManager: Password to unlock the certificate is being logged
CVE-2011-1943 NetworkManager: Password to unlock the certificate is being logged
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
Unspecified Unspecified
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
public=20110529,reported=20110531,sou...
: Security
: 708583 709733 (view as bug list)
Depends On: 709798 709799
Blocks:
  Show dependency treegraph
 
Reported: 2011-05-29 20:28 EDT by Robert Marcano
Modified: 2015-07-31 02:40 EDT (History)
8 users (show)

See Also:
Fixed In Version: NetworkManager-0.8.9997-1.git20110531.fc15
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2011-06-02 03:54:52 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Robert Marcano 2011-05-29 20:28:01 EDT 
Description of problem:

Password to unlock certificate is logged to /var/log/messages

May 29 19:46:42 localhost NetworkManager[4791]: destroy_one_secret: destroying ********

Version-Release number of selected component (if applicable):

NetworkManager-openvpn-0.8.999-1.fc15.x86_64


Additional info:

I would love to have the option to type the password at connection time instead of it being stored, but adding the password to the system log is wrong
Comment 1 Bin Li 2011-06-01 06:43:51 EDT 
Robert,

 I can't find any related source code which could print'destroy_one_secret: destroying'
Comment 2 Jan Lieskovsky 2011-06-01 12:39:45 EDT 
The CVE identifier of CVE-2011-1943 has been assigned to this issue:
[1] http://www.openwall.com/lists/oss-security/2011/05/31/7
Comment 3 Jan Lieskovsky 2011-06-01 12:43:52 EDT 
Created NetworkManager-openvpn tracking bugs for this issue

Affects: fedora-all [bug 709798]
Affects: epel-all [bug 709799]
Comment 4 Robert Marcano 2011-06-01 12:56:26 EDT 
(In reply to comment #1)
> Robert,
> 
>  I can't find any related source code which could print'destroy_one_secret:
> destroying'

Run nm-connection-editor from console, and try to change a password, a message like the one in the log file is shown every time you add a something to the password

** Message: destroy_one_secret: destroying asasdasdasdasd
** Message: destroy_one_secret: destroying asasdasdasdasda
** Message: destroy_one_secret: destroying asasdasdasdasdas

Probably both messages are related
Comment 5 Jan Lieskovsky 2011-06-01 13:10:44 EDT 
*** Bug 709733 has been marked as a duplicate of this bug. ***
Comment 6 Huzaifa S. Sidhpurwala 2011-06-02 03:52:40 EDT 
This is not a  NetworkManager-openvpn issue, the flaw lies in the libnm-util library which is shipped with the NetworkManager package.

The flaw was introduced in the following commit (on 21st May 2011):
http://cgit.freedesktop.org/NetworkManager/NetworkManager/commit/?id=ef71c5cca1f43b09fe90e52950a176bb4cee2ab2

and removed in the following commit (on 27th May 2011):
http://cgit.freedesktop.org/NetworkManager/NetworkManager/commit/?id=78ce088843d59d4494965bfc40b30a2e63d065f6

This issue does not affect the version of NetworkManager shipped in Fedora 13 or Fedora 14.

This issue has been addressed in the following update for Fedora 15:
https://admin.fedoraproject.org/updates/NetworkManager-0.8.9997-1.git20110531.fc15
Comment 7 Huzaifa S. Sidhpurwala 2011-06-02 03:53:29 EDT 
Statement:

Not vulnerable. This issue did not affect the versions of NetworkManager as
shipped with Red Hat Enterprise Linux 4, 5, or 6.
Comment 8 Bin Li 2011-06-02 04:08:33 EDT 
Huzaifa,

 Cool!! Thanks!
Comment 9 Jan Lieskovsky 2011-06-03 07:40:23 EDT 
*** Bug 708583 has been marked as a duplicate of this bug. ***
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.