MidnightBSD

Advisories for sos_project

CVE-2015-3171 LOW

sosreport 3.2 uses weak permissions for generated sosreport archives, which allows local users with access to /var/tmp/ to obtain sensitive information by reading the contents of the archive.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
sos_project sos 3.2
CVE-2015-7529 MEDIUM

sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink attack on an archive file in a temporary directory, as demonstrated by sosreport-$hostname-$date.tar in /tmp/sosreport-$hostname-$date.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_eus 7.2
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_tus 7.2
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_aus 7.3
redhat enterprise_linux_server 6.0
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_desktop 7.0
canonical ubuntu_linux 15.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_aus 7.7
redhat enterprise_linux_server_eus 7.4
redhat enterprise_linux_server_eus 7.7
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server_eus 7.3
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_server_tus 7.7
sos_project sos *
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_server_eus 6.7
CVE-2022-2806

It was found that the ovirt-log-collector/sosreport collects the RHV admin password unfiltered. Fixed in: sos-4.2-20.el8_6, ovirt-log-collector-4.4.7-2.el8ev

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
ovirt log_collector *
sos_project sos *