CVE-2020-10737
6.3
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Summary
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the homedir path. This flaw allows an attacker to leverage this issue by creating a symlink point to a target folder, which then has its ownership transferred to the new home directory's unprivileged user.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | oddjob | before 0.34.5 | affected |
| Red Hat | oddjob | before 0.34.6 | affected |
Weaknesses
- CWE-362: CWE-362
ADP Enrichment
CVE Program Container
Additional References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10737
- https://pagure.io/oddjob/c/10b8aaa1564b723a005b53acc069df71313f4cac?branch
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10737
- https://pagure.io/oddjob/c/10b8aaa1564b723a005b53acc069df71313f4cac?branch
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.