Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 443
Alerts This Week
Warning Icon 1 443

Fedora 22: FEDORA-2015-10944 Critical: openhpi Permissions Issue

fedora
Calendar Grey October 7, 2015
Dist Fedora Esm H88
Ubuntu 20.04 delivers essential kernel upgrade enhancing stability and performance for a more secure environment.
fix /var/lib/openhpi permissions (#1233521).

Summary

OpenHPI is an open source project created with the intent of providing an

implementation of the SA Forum's Hardware Platform Interface (HPI). HPI

provides an abstracted interface to managing computer hardware, typically for

chassis and rack based servers. HPI includes resource modeling; access to and

control over sensor, control, watchdog, and inventory data associated with

resources; abstracted System Event Log interfaces; hardware events and alerts;

and a managed hot swap interface.

OpenHPI provides a modular mechanism for adding new hardware and device support

easily. Many plug-ins exist in the OpenHPI source tree to provide access to

various types of hardware. This includes, but is not limited to, IPMI based

servers, Blade Center, and machines which export data via sysfs.

Update Information:

fix /var/lib/openhpi permissions (#1233521).

Change Log

References


[ 1 ] Bug #1233521 - CVE-2015-3248 openhpi: world writable /var/lib/openhpi directory [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1233521

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update openhpi' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: openhpi
Product: Fedora 22
Version: 3.4.0
Release: 2.fc22
URL: Summary : Hardware Platform Interface library and tools

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.