oss-sec mailing list archives
Re: CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE specific mysql-systemd-helper script
From: Matthias Gerstner <mgerstner () suse de>
Date: Thu, 6 Feb 2020 11:25:07 +0100
Hello Larry, On Wed, Feb 05, 2020 at 11:31:55AM -0500, Larry W. Cashdollar wrote:
That chmod 640 might be interesting if applied to /etc/shadow. It > could allow some users to read the password hashes.
true. Generally it allows to grant groups read permissions on files. I'm not aware of an instance where this directly allows the mysql user to escalate privileges. But it could work when combined with further weaknesses in the system that allow to compromise further user/group accounts. Cheers Matthias
Attachment:
signature.asc
Description:
Current thread:
- CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE specific mysql-systemd-helper script Matthias Gerstner (Feb 05)
- Re: CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE specific mysql-systemd-helper script Larry W. Cashdollar (Feb 05)
- Re: CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE specific mysql-systemd-helper script Matthias Gerstner (Feb 06)
- Re: CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE specific mysql-systemd-helper script Larry W. Cashdollar (Feb 05)