Bug 1213526

Summary: AUDIT-FIND: nqptp: world-writable SHM in /dev/shm/nqptp
Product: [openSUSE] openSUSE Tumbleweed Reporter: Wolfgang Frisch <wolfgang.frisch>
Component: SecurityAssignee: Martin Pluskal <mpluskal>
Status: IN_PROGRESS --- QA Contact: E-mail List <qa-bugs>
Severity: Normal    
Priority: P5 - None CC: carlos.lopez, mpluskal, qa-bugs
Version: Current   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---
Bug Depends on: 1212951    
Bug Blocks:    

Description Wolfgang Frisch 2023-07-20 16:03:49 UTC 
+++ This bug was initially created as a clone of Bug #1212951 +++

nqptp is designed to interoperate with other programs via a POSIX shared
memory object in `/dev/shm/nqptp`. nqptp runs as root and creates this SHM object with world-writable permissions, allowing any unprivileged user to corrupt it.
Comment 1 Wolfgang Frisch 2023-07-20 16:13:48 UTC 
Forwarded to upstream
Comment 2 Wolfgang Frisch 2023-09-04 08:48:40 UTC 
2023-09-01: Upstreamed confirmed they're working on this.
Comment 3 Wolfgang Frisch 2023-09-21 11:02:29 UTC 
Addressed by upstream:
https://github.com/mikebrady/nqptp/releases/tag/1.2.4