Bug 47741 – Diagnostice module: /var/cache/univention-virtual-machine-daemon mode 755 vs. 700

Bug 47741 - Diagnostice module: /var/cache/univention-virtual-machine-daemon mode 755 vs. 700


Summary:	Diagnostice module: /var/cache/univention-virtual-machine-daemon mode 755 vs....

Status:	CLOSED FIXED

Product:	UCS
Classification:	Unclassified
Component:	UMC - Virtual machines (UVMM)
Version:	UCS 4.3
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS 4.3-3-errata
Assigned To:	Philipp Hahn
QA Contact:	Jürn Brodersen

URL:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Reported:	2018-09-04 12:18 CEST by Philipp Hahn
Modified:	2018-12-12 13:45 CET (History)
CC List:	0 users

See Also:
What kind of report is it?:	Security Issue
What type of bug is this?:	1: Cosmetic issue or missing function but workaround exists
Who will be affected by this bug?:	2: Will only affect a few installed domains
How will those affected feel about the bug?:	1: Nuisance – not a big deal but noticeable
User Pain:	0.011
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:	4.0 (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) PMH

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Philipp Hahn

2018-09-04 12:18:49 CEST

Datei "/var/cache/univention-virtual-machine-manager" hat Datei-Modus 755, 700 war erwartet

Comment 1 Philipp Hahn

2018-10-26 13:51:57 CEST

The directory is contained in the Debian package and not dpkg-statoverride is used; as such the directory is created with mode 0755, but the check expects 0700.
The later is "correct" as the directory contains files with private information (VNC passwords).

The missing dpkg-staoverride should be added to the UVMM package.

Comment 2 Philipp Hahn

2018-12-11 12:54:31 CET

The permission is only fixed for new installations; existing installations are not updated.

Comment 3 Jürn Brodersen

2018-12-11 13:19:21 CET

OK ready for merge

Comment 4 Philipp Hahn

2018-12-11 14:17:15 CET

[4.3-3] f99717e953 Bug #47617, Bug #47741, Bug #36661, Bug #48199, Bug #48024, Bug #45498, Bug #35196

Package: univention-virtual-machine-manager-daemon
Version: 7.0.0-17A~4.3.0.201812111413
Branch: ucs_4.3-0
Scope: errata4.3-3

[4.3-3] 582fb65dce Bug #47617: univention-virtual-machine-manager-daemon 7.0.0-17A~4.3.0.201812111413
 doc/errata/staging/univention-virtual-machine-manager-daemon.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Comment 5 Arvid Requate

2018-12-12 13:45:40 CET

<http://errata.software-univention.de/ucs/4.3/382.html>