Uploaded image for project: 'Ambari'
  1. Ambari
  2. AMBARI-20825

check_ambari_permissions.py does not run for all the files and directories listed

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: trunk, 2.5.0, 2.4.2
    • Fix Version/s: trunk, 2.5.0
    • Component/s: None
    • Labels:
      None

      Description

      ambari-server/src/main/resources/scripts/check_ambari_permissions.py script introduced in branch 2.5.0 and published here (https://cwiki.apache.org/confluence/display/AMBARI/Ambari+Vulnerabilities#AmbariVulnerabilities-FixedinAmbari2.5.0) to solve Public Vulnerability:
      https://nvd.nist.gov/vuln/detail/CVE-2017-5642
      only works partially.
      There is a bug and it will only handle the last directory/file when there are multiple directories/files listed.
      So the vulnerability is not totally resolved.
      For example files under /etc/ambari-server/conf/ such as ambari.properties are not revised

        Attachments

        1. AMBARI-20825.patch
          3 kB
          Juanjo Marron

          Issue Links

            Activity

              People

              • Assignee:
                jmarron Juanjo Marron
                Reporter:
                jmarron Juanjo Marron
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: