public inbox for glibc-bugs@sourceware.org
help / color / mirror / Atom feed
* [Bug nscd/23178] sudo will fail when it is run in concurrent with commands that changes /etc/passwd
[not found] <bug-23178-131@http.sourceware.org/bugzilla/>
@ 2024-04-26 17:30 ` bunk at stusta dot de
0 siblings, 0 replies; only message in thread
From: bunk at stusta dot de @ 2024-04-26 17:30 UTC (permalink / raw)
To: glibc-bugs
https://sourceware.org/bugzilla/show_bug.cgi?id=23178
Adrian Bunk <bunk at stusta dot de> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |bunk at stusta dot de
--- Comment #7 from Adrian Bunk <bunk at stusta dot de> ---
While backporting fixes for the recent nscd CVEs I saw the fix for this bug,
and I am wondering whether it might be considered worth a CVE.
chfn(1) and chsh(1) allow normal users to do the equivalent of "touch
/etc/passwd" and
while : ; do echo "mypassword" | chfn -r '' ; done
would be a way for a normal user to touch /etc/passwd in a loop.
The fix is in 2.28 (released 2018), recent distributions are not affected but
some still supported LTS releases are.
--
You are receiving this mail because:
You are on the CC list for the bug.
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2024-04-26 17:30 UTC | newest]
Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
[not found] <bug-23178-131@http.sourceware.org/bugzilla/>
2024-04-26 17:30 ` [Bug nscd/23178] sudo will fail when it is run in concurrent with commands that changes /etc/passwd bunk at stusta dot de
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).