[Bug 1150554] New: AUDIT-1: sarg: review of cron job file(s): /etc/cron.daily/suse.de-sarg, /etc/cron.monthly/suse.de-sarg, /etc/cron.weekly/suse.de-sarg
http://bugzilla.suse.com/show_bug.cgi?id=1150554 Bug ID: 1150554 Summary: AUDIT-1: sarg: review of cron job file(s): /etc/cron.daily/suse.de-sarg, /etc/cron.monthly/suse.de-sarg, /etc/cron.weekly/suse.de-sarg Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: matthias.gerstner@suse.com QA Contact: qa-bugs@suse.de CC: jsegitz@suse.com, malte.kraus@suse.com, matthias.gerstner@suse.com, tabraham@suse.com Blocks: 1150175 Found By: --- Blocker: --- +++ This bug was initially created as a clone of Bug #1150175 As discussed in the proactive security team we want to restrict the installation of cron job files in the future. To achieve this we first need to cover the currently existing packages that do this. sarg installs the following cron files: - /etc/cron.daily/suse.de-sarg - /etc/cron.monthly/suse.de-sarg - /etc/cron.weekly/suse.de-sarg They should be reviewed and whitelisted when all is well. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1150554
Matthias Gerstner
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c3
--- Comment #3 from Matthias Gerstner
http://bugzilla.suse.com/show_bug.cgi?id=1150554 Bug 1150554 depends on bug 1156643, which changed state. Bug 1156643 Summary: VUL-0: CVE-2019-18932: sarg: insecure usage of /tmp/sarg allows privilege escalation / DoS vector http://bugzilla.suse.com/show_bug.cgi?id=1156643 What |Removed |Added ---------------------------------------------------------------------------- Status|IN_PROGRESS |RESOLVED Resolution|--- |FIXED -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c4
Matthias Gerstner
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c5
--- Comment #5 from Matthias Gerstner
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c6
Matthias Gerstner
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c7
--- Comment #7 from Thomas Abraham
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c8
--- Comment #8 from Malte Kraus
http://bugzilla.suse.com/show_bug.cgi?id=1150554
http://bugzilla.suse.com/show_bug.cgi?id=1150554#c9
--- Comment #9 from Matthias Gerstner
participants (1)
-
bugzilla_noreply@novell.com