Vulnerability Description
A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into the newly created home and changes its ownership to the home's user without properly checking the homedir path. This flaw allows an attacker to leverage this issue by creating a symlink point to a target folder, which then has its ownership transferred to the new home directory's unprivileged user.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Oddjob | < 0.34.5 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10737Issue TrackingVendor Advisory
- https://pagure.io/oddjob/c/10b8aaa1564b723a005b53acc069df71313f4cac?branchPatchThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10737Issue TrackingVendor Advisory
- https://pagure.io/oddjob/c/10b8aaa1564b723a005b53acc069df71313f4cac?branchPatchThird Party Advisory
FAQ
What is CVE-2020-10737?
CVE-2020-10737 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A race condition was found in the mkhomedir tool shipped with the oddjob package in versions before 0.34.5 and 0.34.6 wherein, during the home creation, mkhomedir copies the /etc/skel directory into t...
How severe is CVE-2020-10737?
CVE-2020-10737 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-10737?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Oddjob.