Symlink attack with signing_dir = /tmp/keystone-signing-nova
Bug #1233305 reported by
Thomas Goirand
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack DBaaS (Trove) |
Fix Released
|
Critical
|
Michael Basnight | ||
Bug Description
Hi,
Having such thing in the default configuration file:
signing_dir = /tmp/keystone-
was the origin of a CVE in Nova. I would strongly suggest to not use known filenames in /tmp, which are vectors of symlink attacks (and no, the kernel in Wheezy and Precise doesn't have the feature to stop it, that's only in 3.8, IIRC).
The best way to fix it is to use something in the home folder of the package, for example in /var/lib/trove.
| Changed in trove: | |
| status: | New → Confirmed |
| importance: | Undecided → Critical |
| tags: | added: havana-rc-potential |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to trove (master) | #1 |
| Changed in trove: | |
| assignee: | nobody → Michael Basnight (hubcap) |
| status: | Confirmed → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to trove (master) | #2 |
| Changed in trove: | |
| status: | In Progress → Fix Committed |
Revision history for this message
| Thierry Carrez (ttx) wrote | #3 |
| Changed in trove: | |
| milestone: | none → havana-rc2 |
Revision history for this message
| Michael Basnight (hubcap) wrote Re: [Bug 1233305] Re: Symlink attack with signing_dir = /tmp/keystone-signing-nova | #4 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to trove (milestone-proposed) | #5 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to trove (milestone-proposed) | #6 |
| Changed in trove: | |
| status: | Fix Committed → Fix Released |
| Changed in trove: | |
| milestone: | havana-rc2 → 2013.2 |
To post a comment you must log in.
Fix proposed to branch: master
Review: https:/