Overview
Request 731364 superseded
Primarily a fix for CVE-2019-3689
- Don't make /var/lib/nfs owned by statd.
Only sm and sm.bak need to be accessible by
statd or sm-notify after they drop privs.
Providing they get created, the parent
directory can be root-owned.
- 0007-statd-user-from-sm
Change rpc.statd and sm-notify to take uid from the sm
directory.
(bsc#1150733 CVE-2019-3689)
- 0006-nfs.conf-silence-include-error.patch
Avoid an unhelpful warning (bsc#1150807)
- Created by neilbrown
- In state superseded
- Superseded by 732555
- Open review for openSUSE:Factory:Staging:J
Request History
neilbrown created request
Primarily a fix for CVE-2019-3689
- Don't make /var/lib/nfs owned by statd.
Only sm and sm.bak need to be accessible by
statd or sm-notify after they drop privs.
Providing they get created, the parent
directory can be root-owned.
- 0007-statd-user-from-sm
Change rpc.statd and sm-notify to take uid from the sm
directory.
(bsc#1150733 CVE-2019-3689)
- 0006-nfs.conf-silence-include-error.patch
Avoid an unhelpful warning (bsc#1150807)
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
jengelh accepted review
staging-bot set openSUSE:Factory:Staging:J as a staging project
Being evaluated by staging project "openSUSE:Factory:Staging:J"
staging-bot accepted review
Picked openSUSE:Factory:Staging:J
superseded by 732555