Package: noip2 Version: 2.1.9-3 Severity: important Tags: security
If: 1. /var/lib/noip2/noip2.conf is not writable by root[0] and 2. /bin/sh points to bash and3. noip2 hasn't been started in such a weird configuration (i.e. /dev/shm/noip2-readwrite.conf does not exist yet)
a local user can prevent noip2 from starting by making /dev/shm/noip2-readwrite.conf a dangling symlink.
Worse still, if POSIXLY_CORRECT was set while running the init script, the attacker would be able to overwrite arbitrary files.
[0] Why would anyone want to do that?! Please revert patch for #524020, it doesn't make sense.
-- Jakub Wilk
signature.asc
Description: Digital signature
