opensourcemirror
/
cockpit
mirror of https://github.com/cockpit-project/cockpit.git
1
0
Fork 0
Code Issues Releases Wiki Activity
cockpit/pkg
History
Martin Pitt dd272d2b0c sosreport: Fix command injection with crafted report names [CVE-2024-2947] 
Files in /var/tmp/ are controllable by any user. In particular, an
unprivileged user could create an sosreport* file containing a `'` and a
shell command, which would then run with root privileges when the
admin Cockpit user tried to delete the report.

Use the `cockpit.file()` API instead, which entirely avoids shell. The
main motivation for using shell and the glob was to ensure that the
auxiliary files like *.gpg and *.sha256 get cleaned up -- do that
explicitly (which is much safer anyway), and let our tests make sure
that we don't leave files behind.

https://bugzilla.redhat.com/show_bug.cgi?id=2271614
https://bugzilla.redhat.com/show_bug.cgi?id=2271815

Cherry-picked from main commit 9c4cc9b6df
 		2024-03-28 09:48:08 +01:00
..
apps apps: Search in /usr/share/swcatalog 2024-01-30 17:32:42 +01:00
base1 base1: Hack test-stream failure due to glibc resolver bug 2024-02-20 11:29:02 +01:00
kdump kdump: stop using obsolete cockpit.extend 2024-02-14 17:26:26 +01:00
lib lib: update patternfly url to the current version 2024-02-14 17:26:26 +01:00
metrics Update to PatternFly 5.1 2023-10-10 12:06:40 +02:00
networkmanager networking: Disable interface On/off and MAC editing when unprivileged 2023-12-13 10:37:49 +02:00
packagekit packagekit: Update CVE link to go to the new site 2023-12-29 07:04:08 +01:00
pcp Drop obsolete versioned dependencies 2022-11-23 06:44:53 +01:00
playground playground: Add process input speed test 2023-09-22 09:58:31 +02:00
selinux lib: move SELinux specific message to selinux page 2023-09-22 13:23:55 +02:00
shell CSS: stylelint fixes 2024-02-07 15:59:17 +01:00
sosreport sosreport: Fix command injection with crafted report names [CVE-2024-2947] 2024-03-28 09:48:08 +01:00
static static: Avoid leading/trailing space on browser check message 2023-12-27 21:35:28 +01:00
storaged storage: Explicitly round sizes for new partitions 2024-02-14 14:17:21 +01:00
systemd systemd: Prevent insights-client crash when stdout is closed 2024-02-14 17:26:26 +01:00
users users: handle tab's in lastlog output 2024-02-09 15:41:25 +01:00
Makefile.am Drop Python bridge 2024-02-14 09:23:36 +01:00
Makefile.qunit build: Put webpacked unit tests into ./qunit/ 2023-03-20 15:20:38 +01:00
ruff.toml ruff: move linter settings to [lint] section 2024-02-02 16:16:19 +01:00