It was discovered that Red Hat Network Configuration Client set insecure (0644) permissions on the /var/log/rhncfg-actions file used to store (besides terminal) the output of different RHN Client actions (diff, verify etc.). A local attacker could use this flaw to obtain sensitive information, if the rhncfg-client diff action has been used to query differences between the (normally for unprivileged user not readable) config files stored by RHN and those, deployed on the system.
The CVE identifier of CVE-2012-2679 has been assigned for this issue.
This issue affects the versions of the rhncfg package, as shipped with Fedora release of 15, 16, and 17. Please schedule an update.
Created rhncfg tracking bugs for this issue Affects: fedora-all [bug 832037]
Acknowledgements: This issue was discovered by Paul Wouters of Red Hat.
This issue has been addressed in following products: Red Hat Network Tools for RHEL 5 Red Hat Network Tools for RHEL 5.3.LL Red Hat Network Tools for RHEL 5.6.Z Red Hat Network Tools for RHEL 6 Red Hat Network Tools for RHEL 6.0.Z Red Hat Network Tools for RHEL 6.1.Z Red Hat Network Tools for RHEL 6.2.Z Red Hat Network Tools for RHEL 6.3.Z Via RHSA-2012:1369 https://rhn.redhat.com/errata/RHSA-2012-1369.html