maas-import-pxe-files sources path-relative config
Bug #1158425 reported by
dann frazier
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| MAAS |
Fix Released
|
Critical
|
Julian Edwards | ||
| 1.2 |
Fix Released
|
Critical
|
Julian Edwards | ||
| 1.3 |
Fix Released
|
Critical
|
Julian Edwards | ||
Bug Description
From /usr/sbin/
# Load settings if available.
settings=
[ -r $settings ] && . $settings
local_settings=
[ -r $local_settings ] && . $local_settings
Consider what would happen if the admin runs this from /tmp and an unprivileged user has created their own /tmp/etc/
CVE References
| Changed in maas: | |
| status: | New → Triaged |
| importance: | Undecided → Critical |
| information type: | Private Security → Public |
| Changed in maas: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.

This is CVE-2013-1057