Overview

File _patchinfo of Package patchinfo.1207

<patchinfo incident="1207">
  <issue id="891268" tracker="bnc">AUDIT-0: CVE-2014-7141: VUL-1: server:proxy/squid permissions and setbadness handling</issue>
  <issue id="943471" tracker="bnc">AUDIT-0: civetweb won't start if using a low port (wants net_cap)</issue>
  <issue id="906336" tracker="bnc">AUDIT-0: security audit for cups-backend-kerberized-smb in OBS project Printing</issue>
  <issue id="904060" tracker="bnc">AUDIT-0: Education/iouyap: wants "net" capabilities</issue>
  <issue id="895647" tracker="bnc">startx as nonroot with non-setuid Xorg -- gives advice about permissions.local</issue>
  <issue id="685093" tracker="bnc">samba-krb-printing: get_printing_ticket not executed because of setuid bit</issue>
  <category>recommended</category>
  <rating>moderate</rating>
  <packager>msmeissn</packager>
  <description>The default permission settings received the following adjustments:

- Adjust radosgw to root:www mode 0750. (bsc#943471)
- Add capability cap_bind_net_service to radosgw. (bsc#943471)
- Remove /usr/bin/get_printing_ticket. (bsc#685093, bsc#906336)
- Add iouyap capabilities. (bsc#904060)
- Add settings for the Squid Proxy server. (bsc#891268)
- Document that "chkstat --system --set" needs to be run after editing. (bsc#895647)
</description>
  <summary>Recommended update for permissions</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places