oss-sec mailing list archives
Re: CVE Request for ceph-deploy copying keyring to /etc/ceph which is world readable
From: cve-assign () mitre org
Date: Thu, 21 May 2015 23:31:00 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
http://tracker.ceph.com/issues/11694
when using the 'ceph-deploy admin' command, the /etc/ceph/ceph.client.admin.keyring on the host is world-readable, and thus making it usable for all local users
Use CVE-2015-4053. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (SunOS) iQEcBAEBAgAGBQJVXqJTAAoJEKllVAevmvmsxswH/0dKXt6yWuoTCR+jCilII1Rv 5bWxFYYgR+TxK+wZCpbwMOfnSLv8RExtGP2pZErIami1DzKTwKQnZ0FHSN0ThWGS iLdLYt/oCDg8Xcw67zXcZx758hnuIi6cJrX1JX4VfJz0UkTGYHqFOx1A8k/Sc+IJ Juo5wwg1NeETLyIK74s+K7IVHKR8UAk5ltynDY2ii/KNHIoVoBAX5CwLa0XOc9x2 GGjAsaz5PK6PrlZUiP4+wxE22q6eRkQQvJ139oQfvfb2vlPUECGNTyyspeYYnFFz NHe9vOWIWkHSEyT/WBQDsFOVIc5LfcbstBKpvzE8BG8U/DuDc/yQlkeq8bZWk1A= =sJIJ -----END PGP SIGNATURE-----
Current thread:
- CVE Request for ceph-deploy copying keyring to /etc/ceph which is world readable Siddharth Sharma (May 21)
- Re: CVE Request for ceph-deploy copying keyring to /etc/ceph which is world readable cve-assign (May 21)