0001-BZ-1858311-CVE-2020-14335-dhcpd.conf-permissions.patch - Installer - Foreman

Bug #30489 » 0001-BZ-1858311-CVE-2020-14335-dhcpd.conf-permissions.patch

Fix - dhcpd permissions, do not allow omapi without a secret - Ondřej Ezr, 07/24/2020 10:48 PM

         interfaces  => [$foreman_proxy::dhcp_interface] + $foreman_proxy::dhcp_additional_interfaces,
         pxeserver   => $ip,
         pxefilename => $foreman_proxy::dhcp_pxefilename,
         omapi       => !!($foreman_proxy::dhcp_key_name and $foreman_proxy::dhcp_key_secret),
         omapi_name  => $foreman_proxy::dhcp_key_name,
         omapi_key   => $foreman_proxy::dhcp_key_secret,
+      }
       File <| title == '/etc/dhcp' |> { mode => '0750' }
       File <| title == '/etc/dhcp/dhcpd.conf' |> { mode => '0640' }
       ::dhcp::pool{ $::domain:
         network        => $net,
         mask           => $mask,

(1-1/4)