846503 – (CVE-2012-3460) CVE-2012-3460 cumin: postgresql database user created without password

Bug 846503 (CVE-2012-3460) - CVE-2012-3460 cumin: postgresql database user created without password

Summary: CVE-2012-3460 cumin: postgresql database user created without password

Keywords:
Status:	CLOSED ERRATA
Alias:	CVE-2012-3460
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	high
Severity:	high
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	846345
Blocks:	808230
TreeView+	depends on / blocked

Reported:	2012-08-08 01:21 UTC by Vincent Danen
Modified:	2019-09-29 12:54 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-02-06 23:08:48 UTC
Embargoed:

Attachments	(Terms of Use)

Description Vincent Danen 2012-08-08 01:21:49 UTC

Florian Weimer reported that, when Cumin is installed, it creates a "cumin" PostgreSQL user and changes pg_hba.conf so that no password is required for authentication.  This could be used to bypass role separation in Cumin; for instance in a setup where condor_schedd runs on the same machine as Cumin and a regular Cumin user could submit a job that connects to the PostgreSQL database and alters the database in such a way as to give the regular user administrative privileges.

Note You need to log in before you can comment on or make changes to this bug.