Mailinglist Archive: opensuse-bugs (4297 mails)

< Previous Next >
[Bug 1041511] AUDIT-0: smb4k (suse-dbus-unauthorized-service, polkit-unauthorized-privilege)
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Tue, 30 May 2017 08:08:33 +0000
  • Message-id: <bug-1041511-21960-WAeOH96OiB@http.bugzilla.suse.com/>
http://bugzilla.suse.com/show_bug.cgi?id=1041511
http://bugzilla.suse.com/show_bug.cgi?id=1041511#c1

Sebastian Krahmer <krahmer@xxxxxxxx> changed:

What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |krahmer@xxxxxxxx
Resolution|--- |WONTFIX

--- Comment #1 from Sebastian Krahmer <krahmer@xxxxxxxx> ---
Due to CVE-2017-8422 and CVE-2017-8849 it was decided to remove
smb4k from Factory. Operating with root privileges (such as
smb4k helper is doing) in user owned directories can never be secure.
Thats why it wont be approved.

--
You are receiving this mail because:
You are on the CC list for the bug.
< Previous Next >
This Thread
  • No further messages