oss-sec mailing list archives

Re: icinga2: CVE-2020-14004: prepare-dirs script allows for symlink attack in the icinga user context

From: Michael Orlitzky <michael () orlitzky com>
Date: Fri, 12 Jun 2020 08:16:23 -0400

On 2020-06-12 05:54, Matthias Gerstner wrote:

Hello list,

during the review of directories with special permissions in openSUSE
distributions I noticed an icinga user privilege escalation issue in the
icinga2 monitoring software [1].


face -> palm

https://github.com/Icinga/icinga2/issues/5793

But it could still turn out to be subject to
race conditions on older or alternative `chown` implementations. It
would also be problematic if the Linux kernel hardlink protection is
turned off for some reason.


Hardlink protection is off by default in the vanilla kernel.

Current thread:

icinga2: CVE-2020-14004: prepare-dirs script allows for symlink attack in the icinga user context Matthias Gerstner (Jun 12)
- Re: icinga2: CVE-2020-14004: prepare-dirs script allows for symlink attack in the icinga user context Michael Orlitzky (Jun 12)