Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2013-4561: Bug 1022889 - AVC message is seen when mcolletive facts update cron j… · openshift/origin-server@f1abe97

In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.

CVE
#ruby

This repository has been archived by the owner. It is now read-only.

  • Notifications

  • Fork 536

  • Code

  • Issues 29

  • Pull requests 18

  • Projects

  • Security

  • Insights

Permalink

Browse files

Bug 1022889 - AVC message is seen when mcolletive facts update cron j…

…ob is running.

Looking back at the history showed that the switch to writing to /tmp/facts.log was actually a mistake. I’m reverting that change which will address this bug.

  • Loading branch information

1 parent 5f554b4 commit f1abe972794e35a4bfba597694ce829990f14d39

Showing 1 changed file with 1 addition and 1 deletion.

@@ -6,4 +6,4 @@ if [ -f /opt/rh/ruby193/root/usr/libexec/mcollective/update_yaml.rb ]; then

PREFIX="/opt/rh/ruby193/root"

fi

oo-exec-ruby ${PREFIX}/usr/libexec/mcollective/update_yaml.rb ${PREFIX}/etc/mcollective/facts.yaml &> /tmp/facts.log

oo-exec-ruby ${PREFIX}/usr/libexec/mcollective/update_yaml.rb ${PREFIX}/etc/mcollective/facts.yaml &> /dev/null

0 comments on commit f1abe97

Please sign in to comment.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907