Permissions of symlinked source file/folder set to 777 if symlink is copied via nautilus
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Nautilus |
Fix Released
|
Critical
|
|||
glib2.0 (Ubuntu) |
Fix Released
|
Medium
|
Kees Cook | ||
Dapper |
Invalid
|
Undecided
|
Martin Erik Werner | ||
Hardy |
Fix Released
|
Medium
|
Martin Erik Werner | ||
Intrepid |
Fix Released
|
Medium
|
Martin Erik Werner | ||
Jaunty |
Fix Released
|
Medium
|
Martin Erik Werner | ||
Karmic |
Fix Released
|
Medium
|
Kees Cook |
Bug Description
Binary package hint: nautilus
TEST CASE:
1. Create a symlink to a file or folder, on which you normally are able change permissions. (touch ~/testfile && ln -s ~/testfile ~/testlink)
2. Copy the symlink to anywhere using Nautilus (ctrl+c && ctrl+v)
3. Check permissions of the symlinked file or folder
Result: Symlinked file or folder permissions are changed to 777 (drwxrwxrwx user:user)
Expected behaviour: Permissions of symlinked file folder should be unchanged
NOTE: If testing different versions, nautilus needs to be restarted (including desktop), this easily done with:
killall nautilus && nautilus &disown
This bug does not allow setting permissions which your user could not do with chmod anyway, and hence is not a privilege escalation issue.
CVE References
visibility: | private → public |
summary: |
- Permissions on user home directory set to 777 after copying it via - nautilus + Permissions on user home directory (source) set to 777 after copying it + via nautilus |
Changed in nautilus (Ubuntu): | |
status: | New → Triaged |
Changed in nautilus: | |
status: | Unknown → New |
description: | updated |
summary: |
- Permissions on user home directory (source) set to 777 after copying it - via nautilus + Permission of source folder in ~ set to 777 if symlinked and copied via + nautilus |
description: | updated |
tags: |
added: symlink removed: home |
summary: |
- Permission of symlinked source file/folder set to 777 if symlink is - copied via nautilus + Subscribe someone else Search Search + arand • Launchpad > Ubuntu > “nautilus” package Overview / Code / + Bugs / Blueprints / Translations / Answers Bug #418135 reported by + arand on 2009-08-24 (Activity log) Bug #418135: This report is public + edit Security vulnerability Permissions of symlinked source file/folder + set to 777 if symlink is copied via nautilus |
description: | updated |
summary: |
- Subscribe someone else Search Search - arand • Launchpad > Ubuntu > “nautilus” package Overview / Code / - Bugs / Blueprints / Translations / Answers Bug #418135 reported by - arand on 2009-08-24 (Activity log) Bug #418135: This report is public - edit Security vulnerability Permissions of symlinked source file/folder - set to 777 if symlink is copied via nautilus + Permissions of symlinked source file/folder set to 777 if symlink is + copied via nautilus |
Changed in nautilus (Ubuntu): | |
milestone: | none → karmic-alpha-6 |
affects: | nautilus (Ubuntu) → glib2.0 (Ubuntu) |
Changed in glib2.0 (Ubuntu): | |
status: | Triaged → In Progress |
Changed in glib2.0 (Ubuntu Intrepid): | |
status: | New → Confirmed |
Changed in glib2.0 (Ubuntu Hardy): | |
status: | New → Confirmed |
Changed in glib2.0 (Ubuntu Jaunty): | |
status: | New → Confirmed |
Changed in glib2.0 (Ubuntu Karmic): | |
assignee: | Ubuntu Desktop Bugs (desktop-bugs) → Kees Cook (kees) |
Changed in glib2.0 (Ubuntu Dapper): | |
status: | New → Confirmed |
description: | updated |
visibility: | public → private |
visibility: | private → public |
Changed in glib2.0 (Ubuntu Dapper): | |
status: | Invalid → Fix Committed |
Changed in glib2.0 (Ubuntu Dapper): | |
status: | Fix Committed → Invalid |
Changed in nautilus: | |
importance: | Unknown → Critical |
Architecture: amd64 dules: nvidia ture: amd64
DistroRelease: Ubuntu 9.04
NonfreeKernelMo
Package: nautilus 1:2.26.2-0ubuntu2
PackageArchitec
ProcEnviron:
SHELL=/bin/bash
LANG=en_US.UTF-8
Uname: Linux 2.6.28-15-generic x86_64
UserGroups: adm admin cdrom dialout lpadmin plugdev sambashare