diff options
author | Ravishankar N <ravishankar@redhat.com> | 2018-11-02 11:00:43 +0530 |
---|---|---|
committer | Shyamsundar Ranganathan <srangana@redhat.com> | 2018-11-06 16:13:14 +0000 |
commit | 5f4ae8a80543332a2e92dfa5c7f833ae7b93a664 (patch) | |
tree | 6ec31bea6a9ac6dad565b1e909226428b8fa9794 /libglusterfs | |
parent | 224895148d95742c1f36b48bb79d8b9ef1ff0cd6 (diff) |
index: prevent arbitrary file creation outside entry-changes folder
Patch in master: https://review.gluster.org/#/c/glusterfs/+/21534/
A compromised client can set arbitrary values for the GF_XATTROP_ENTRY_IN_KEY
and GF_XATTROP_ENTRY_OUT_KEY during xattrop fop. These values are
consumed by index as a filename to be created/deleted according to the key.
Thus it is possible to create/delete random files even outside the gluster
volume boundary.
Fix:
Index expects the filename to be a basename, i.e. it must not contain any
pathname components like "/" or "../". Enforce this.
Fixes: CVE-2018-14654
Fixes: bz#1646200
Change-Id: I35f2a39257b5917d17283d0a4f575b92f783f143
Signed-off-by: Ravishankar N <ravishankar@redhat.com>
Diffstat (limited to 'libglusterfs')
0 files changed, 0 insertions, 0 deletions