Bug 1196140 - AUDIT-TRACKER: cscreen: review of /etc/sudoers.d/cscreen
AUDIT-TRACKER: cscreen: review of /etc/sudoers.d/cscreen
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Audits
unspecified
Other Other
: P5 - None : Normal
: ---
Assigned To: Matthias Gerstner
Security Team bot
:
Depends on: CVE-2022-21945 CVE-2022-21946
Blocks: 1172785
  Show dependency treegraph
 
Reported: 2022-02-18 10:14 UTC by Matthias Gerstner
Modified: 2022-03-11 10:27 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Matthias Gerstner 2022-02-18 10:14:39 UTC
The security team intends to introduce a whitelisting restriction on packaging
files in the sudoers.d drop-in directory. To do so all currently packaged
files need to be checked first.

This package installs the following file:

/etc/sudoers.d/cscreen
Comment 1 Matthias Gerstner 2022-02-24 14:22:24 UTC
This cscreen package has a couple of issues that need fixing, the sudoers
rule included. I created sub bugs to track this.
Comment 2 Matthias Gerstner 2022-03-11 10:27:06 UTC
the issues have been addressed, closing this tracker, too