We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.
Users should upgrade to at least 6.3.x.
None
Many thanks to Matthias Gerstner for finding this issue and for Alberto Planas for the fix.
If you have any questions or comments about this advisory:
Impact
Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.
Patches
Users should upgrade to at least 6.3.x.
Workarounds
None
Credit
Many thanks to Matthias Gerstner for finding this issue and for Alberto Planas for the fix.
For more information
If you have any questions or comments about this advisory: