*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
Binary package hint: aide
My "Daily AIDE report" reported the following:
-- snip --
The following software updates were detected and were filtered from this list:
coreutils
-- snip--
yet it did not filter the files in the package list like it was supposed
to, for example, it still reported these to changes:
changed: /usr/share/man/man1/[.1.gz
changed: /usr/bin/[
Which caused /etc/cron.daily/aide to bomb with the following error:
-- snip --
Anacron job 'cron.daily' on cylon
/etc/cron.daily/aide:
grep: Unmatched [ or [^
grep: Unmatched [ or [^
-- snip --
As you can see, the aide shell script is reading the name of a file that
include's a left square bracket and grep is trying to interpret that as
a regular expression. I narrowed down the problem to two lines here:
/etc/cron.daily/aide:328: if [ -z "$(grep
"^${BASH_REMATCH[2]}$" "$FILTERTMP3")" ]; then
and
/etc/cron.daily/aide:350: < "$NOISETMP2" grep -v
"^\(changed\|removed\|added\): $NOISE" >> "$NOISETMP"
Those two lines should be fixed such that the bash variables escape any
regular expressions before passed to grep.
ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: aide-common 0.13.1-11ubuntu2
ProcVersionSignature: Ubuntu 2.6.32-25.44-generic 2.6.32.21+drm33.7
Uname: Linux 2.6.32-25-generic x86_64
NonfreeKernelModules: nvidia
Architecture: amd64
Date: Mon Oct 11 10:50:37 2010
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release amd64 (20100429)
PackageArchitecture: all
ProcEnviron:
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: aide
** Affects: aide (Ubuntu)
Importance: Low
Assignee: Marc Deslauriers (mdeslaur)
Status: Confirmed
** Tags: amd64 apport-bug lucid
--
cron.daily/aide incorrectly handles certain filenames
https://bugs.launchpad.net/bugs/658489
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
