Bug 1196140 – AUDIT-TRACKER: cscreen: review of /etc/sudoers.d/cscreen

Bug 1196140 - AUDIT-TRACKER: cscreen: review of /etc/sudoers.d/cscreen


Summary:	AUDIT-TRACKER: cscreen: review of /etc/sudoers.d/cscreen

Status:	RESOLVED FIXED

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Audits
Version:	unspecified
Hardware:	Other Other

Priority:	P5 - None Severity: Normal
Target Milestone:	---
Assigned To:	Matthias Gerstner
QA Contact:	Security Team bot

URL:
Whiteboard:
Keywords:

Depends on:	CVE-2022-21945 CVE-2022-21946
Blocks:	1172785
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2022-02-18 10:14 UTC by Matthias Gerstner
Modified:	2022-03-11 10:27 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Matthias Gerstner 2022-02-18 10:14:39 UTC

The security team intends to introduce a whitelisting restriction on packaging
files in the sudoers.d drop-in directory. To do so all currently packaged
files need to be checked first.

This package installs the following file:

/etc/sudoers.d/cscreen

Comment 1 Matthias Gerstner 2022-02-24 14:22:24 UTC

This cscreen package has a couple of issues that need fixing, the sudoers
rule included. I created sub bugs to track this.

Comment 2 Matthias Gerstner 2022-03-11 10:27:06 UTC

the issues have been addressed, closing this tracker, too