AZL-42310 CVE-2024-2905 affecting package rpm-ostree for versions less than 2024.4-3
A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potentially exposing sensitive authentication da...