Kunbus-2025-0000004: Dangerous default file permissions
TLP: WHITE
| Publisher: KUNBUS PSIRT | Document category: csaf_security_advisory |
| Initial release date: 2025-06-06T13:08:50.043636831Z | Engine: csaf-cms-backend 1.0.0 |
| Current release date: 2025-06-06T13:08:50.043636831Z | Build Date: 2025-06-06T13:07:54.688Z |
| Current version: 1.0.0 | Status: final |
| CVSSv3.1 Base Score: 6.6 | Severity: Medium |
| Original language: | Language: en-US |
| Also referred to: | |
Vulnerabilities
Details
During the Image build process a few files were added with too much permissions. This includes the following: /etc/default/keyboard, /etc/default/locale, /etc/hosts, /etc/locale.gen, /etc/timezones, /etc/apt/sources.list, /etc/apt/sources.list.d/raspi.sources, /usr/share/keyrings/raspberrypi-archive-keyring.gpg This would allow a locally authenticated attacker to alter package repositories and change package signing keys as well as changing timezone, locale and similar things.
| CWE: | CWE-276:Incorrect Default Permissions |
|---|
Product status
Known affected
| Product | CVSS-Vector | CVSS Base Score |
|---|---|---|
| Revolution Pi Revolution Pi OS Bullseye 04/2025 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L | 6.6 |
Recommended
- Revolution Pi Revolution Pi OS Bullseye 05/2025
Fixed
- Revolution Pi Revolution Pi OS Bullseye 05/2025
Remediations
Vendor fix (2025-06-02T10:00:00.000Z)
Update to Bookworm Image 05/2025.
For products:
- Revolution Pi Revolution Pi OS Bullseye 04/2025
https://revolutionpi.com/en/support/downloads
Vendor fix (2025-06-02T10:00:00.000Z)
Install the package revpi-base-files in version 1.1.1-1+deb12+2. This fixes all file permissions
For products:
- Revolution Pi Revolution Pi OS Bullseye 04/2025
Mitigation (2025-05-28T10:00:00.000Z)
Change the file permissions of the following files to 644. /etc/default/keyboard, /etc/default/locale, /etc/hosts, /etc/locale.gen, /etc/timezones, /etc/apt/sources.list, /etc/apt/sources.list.d/raspi.sources, /usr/share/keyrings/raspberrypi-archive-keyring.gpg
For products:
- Revolution Pi Revolution Pi OS Bullseye 04/2025
KUNBUS PSIRT
Namespace: https://www.kunbus.com
product-security@kunbus.com
KUNBUS GmbH develops and produces the Revolution Pi Family, Revolution Pi OS and the extension modules for RevPi amongst others. KUNBUS PSIRT is responsible for vulnerability handling across all KUNBUS products and services.
References
- HTML Version : https://www.kunbus.com/en/productsecurity/Kunbus-2025-0000004
- URL generated by system (self): https://psirt.kunbus.com/.well-known/csaf/white/2025/kunbus-2025-0000004.json
Revision history
| Version | Date of the revision | Summary of the revision |
|---|---|---|
| 1.0.0 | 2025-06-06T13:08:50.043636831Z | Initial Publication |
Sharing rules
TLP:WHITE
For the TLP version see: https://www.first.org/tlp/
Legal Disclaimer
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. KUNBUS RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.