Overview
Request 1035188 accepted
- Remove attempts to correct configuration file ownership and
permissions in service files, that may lead to local privilege
escalation from quagga to root (bsc#1191890,CVE-2021-44038).
[+ remove-chown-chmod.service.patch]
- Correct hardening patches adding ReadWritePaths=/etc/quagga
- Add update-messages that quagga is not developed for years,
is about to get dropped from Factory/Tumbleweed soon and
users should migrate to FRR (https://frrouting.org/).
- Created by mtomaschewski
- In state accepted
-
Package maintainers:
mtomaschewski and
yyyeer
Request History
mtomaschewski created request
- Remove attempts to correct configuration file ownership and
permissions in service files, that may lead to local privilege
escalation from quagga to root (bsc#1191890,CVE-2021-44038).
[+ remove-chown-chmod.service.patch]
- Correct hardening patches adding ReadWritePaths=/etc/quagga
- Add update-messages that quagga is not developed for years,
is about to get dropped from Factory/Tumbleweed soon and
users should migrate to FRR (https://frrouting.org/).
mtomaschewski added jsegitz as a reviewer
Johannes, OK from your POV?
jsegitz accepted review
yes, that is fine, thank you
jsegitz approved review
yes, that is fine, thank you
mtomaschewski accepted request
