Temporary file vulnerability in euca_conf
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
eucalyptus (Ubuntu) |
Fix Released
|
Low
|
Colin Watson | ||
Karmic |
Fix Released
|
Low
|
Colin Watson |
Bug Description
euca_conf handles its temporary files insecurely:
# 3 paramenter: the file, the variable name, the new value
change_var_value () {
cp $1 /tmp/euca-tmp.$$
sed "s<^[[:
rm -f /tmp/euca-tmp.$$
}
# comment lines matching $2 ($1 is the file)
comment () {
cp $1 /tmp/euca-tmp.$$
sed "s<^[[:
rm -f /tmp/euca-tmp.$$
}
# comment lines matching $2 ($1 is the file)
uncomment () {
cp $1 /tmp/euca-tmp.$$
sed "s<^[#[
rm -f /tmp/euca-tmp.$$
}
Changed in eucalyptus (Ubuntu): | |
status: | New → Confirmed |
Changed in eucalyptus (Ubuntu): | |
importance: | Undecided → Low |
visibility: | private → public |
Changed in eucalyptus (Ubuntu): | |
milestone: | none → karmic-alpha-6 |
assignee: | nobody → Soren Hansen (soren) |
status: | Confirmed → Triaged |
Changed in eucalyptus (Ubuntu Karmic): | |
assignee: | Soren Hansen (soren) → Colin Watson (cjwatson) |
status: | Triaged → Fix Committed |
This bug was fixed in the package eucalyptus - 1.6~bzr672-0ubuntu3
--------------- 0ubuntu3) karmic; urgency=low
eucalyptus (1.6~bzr672-
[ Colin Watson ]
* Add euca_conf --discover-nodes option.
* Register cluster with local cloud in start as well as cleanstart.
* SECURITY UPDATE: Fix temporary file vulnerability in euca_conf by using
'sed -i' (LP: #424459).
[ Soren Hansen ] java-common. (LP: #429086)
* Only ship antlr.jar in eucalyptus-
-- Soren Hansen <email address hidden> Mon, 14 Sep 2009 12:59:40 +0200