Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 1598928 - (CVE-2018-10917) CVE-2018-10917 pulp: Improper path parsing leads to overwrite of iso repositories
CVE-2018-10917 pulp: Improper path parsing leads to overwrite of iso reposito...
Status: NEW
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
medium Severity medium
: ---
: ---
Assigned To: Red Hat Product Security
impact=moderate,public=20180814:2150,...
: Security
Depends On: 1611032 1616079 1640223
Blocks: 1598930
  Show dependency treegraph
 
Reported: 2018-07-06 17:28 EDT by Pedro Sampaio
Modified: 2018-10-17 10:58 EDT (History)
25 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Pedro Sampaio 2018-07-06 17:28:18 EDT 
A flaw was found in pulp 2.16.x and possibly older. A malicious user or a malicious iso feed repository can write to locations accessible to the ‘apache’ user. This may lead to overwrite of published content on other iso repositories.
Comment 1 Doran Moppert 2018-07-17 00:35:03 EDT 
Statement:

Red Hat Enterprise Virtualization Hypervisor includes only selected components of pulp, which are not affected by this flaw.
Comment 4 Richard Maciel Costa 2018-08-06 19:50:31 EDT 
Acknowledgments:

Name: Simon Baatz (Telekom Deutschland GmbH)
Comment 5 Richard Maciel Costa 2018-08-14 17:51:42 EDT 
Created pulp tracking bugs for this issue:

Affects: fedora-all [bug 1616079]
Comment 8 Riccardo Schirone 2018-10-17 10:34:45 EDT 
Red Hat Update Infrastructure (RHUI) does not ship ISO content so the vulnerability cannot be triggered during regular usage of rhui-manager. However a user could still run (or be tricked into running) pulp commands to trigger the vulnerability on the Red Hat Update Appliance (RHUA).
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.