1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
documentation_complete: true
title: 'Verify User Who Owns System.map Files'
description: |-
The System.map files are symbol map files generated during the compilation of the Linux
kernel. They contain the mapping between kernel symbols and their corresponding memory
addresses. These files must be owned by root.
{{{ describe_file_owner(file="/boot/System.map*", owner="root") }}}
rationale: |-
The purpose of <tt>System.map</tt> files is primarily for debugging and profiling the kernel.
Unrestricted access to these files might disclose information useful to attackers and
malicious software leading to more sophisticated exploitation.
severity: low
identifiers:
cce@rhel8: CCE-86586-5
cce@rhel9: CCE-86587-3
cce@rhel10: CCE-89808-0
ocil_clause: '{{{ ocil_clause_file_owner(file="/boot/System.map*", owner="root") }}}'
ocil: |-
{{{ ocil_file_owner(file="/boot/System.map*", owner="root") }}}
template:
name: file_owner
vars:
filepath: /boot/
file_regex: ^.*System\.map.*$
fileuid: '0'
|
