oss-sec mailing list archives
CVE request: crowbar ohai plugin: local privilege (root) escalation due to insecure tmp file handling
From: Thomas Biege <thomas () suse de>
Date: Mon, 27 Aug 2012 17:31:13 +0200
Hi, insecure handling of tmp files can lead to executing arbitrary shell commands as root: https://github.com/SUSE-Cloud/barclamp-deployer/commit/b6454268a067fc77ff5de82057b5b53b3cc38b87 Thanks, Thomas -- Thomas Biege, Project Manager Security, CSSLP SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 21284 (AG Nürnberg) -- Wer aufhoert besser werden zu wollen, hoert auf gut zu sein. -- Marie von Ebner-Eschenbach
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- CVE request: crowbar ohai plugin: local privilege (root) escalation due to insecure tmp file handling Thomas Biege (Aug 27)