[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[linux-security] insecure creation of swap files in RH 7.1



Topic
=====
Insecure creation of swap files during RedHat 7.1 installation

Problem Description
===================
If any swap files were created during installation of Red Hat Linux 7.1
(they were created during updates if the user requested it), they were
world-readable, meaning every user could read data in the swap file(s),
possibly including passwords.
  
The affected swap files are called /mountpoint/SWAP and
/mountpoint/SWAP-(numeral)
  
Also, this release of mount enforces sane permissions on swap space.

Affected Systems
================
RedHat 7.1 only

Solution
========
rpm -Fvh mount-2.11b-3.i386.rpm losetup-2.11b-3.i386.rpm