[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE-2019-18901: mariadb: possible symlink attack for the mysql user in the SUSE s
From:       Matthias Gerstner <mgerstner () suse ! de>
Date:       2020-02-06 10:25:07
Message-ID: 20200206102507.GA11632 () f195 ! suse ! de
[Download RAW message or body]


Hello Larry,

On Wed, Feb 05, 2020 at 11:31:55AM -0500, Larry W. Cashdollar wrote:
> That chmod 640 might be interesting if applied to /etc/shadow.
> It > could allow some users to read the password hashes.

true. Generally it allows to grant groups read permissions on files. I'm
not aware of an instance where this directly allows the mysql user to
escalate privileges. But it could work when combined with further
weaknesses in the system that allow to compromise further user/group
accounts.

Cheers

Matthias

["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]