Описание
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.
An insecure temporary file use flaw was found in the way sos created certain sosreport files. A local attacker could possibly use this flaw to perform a symbolic link attack to reveal the contents of sosreport files, or in some cases modify arbitrary files and escalate their privileges on the system.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | sos | Will not fix | ||
| Red Hat Enterprise Linux OpenStack Platform 7 (Kilo) | sos | Will not fix | ||
| Red Hat OpenStack Platform 8 (Liberty) | sos | Not affected | ||
| Red Hat Enterprise Linux 6 | sos | Fixed | RHSA-2016:0152 | 09.02.2016 |
| Red Hat Enterprise Linux 7 | sos | Fixed | RHSA-2016:0188 | 16.02.2016 |
Показывать по
Дополнительная информация
Статус:
EPSS
6 Medium
CVSS2
Связанные уязвимости
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.
sosreport in SoS 3.x allows local users to obtain sensitive informatio ...
ELSA-2016-0188: sos security and bug fix update (MODERATE)
EPSS
6 Medium
CVSS2