1805008 – Mojarra: Path traversal in ResourceManager.java:getResourceLibraryContracts() via the con parameter

Bug 1805008 - Mojarra: Path traversal in ResourceManager.java:getResourceLibraryContracts() via the con parameter

Summary: Mojarra: Path traversal in ResourceManager.java:getResourceLibraryContracts()...

Keywords:
Status:	CLOSED DUPLICATE of bug 1805006
Alias:	None
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-02-20 05:38 UTC by Ted Jongseok Won
Modified:	2021-12-14 18:47 UTC (History)
CC List:	81 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:	A path traversal flaw was found in Eclipse Mojarra in versions prior to 2.3.14. Mojarra is vulnerable to a path traversal flaw via either the loc parameter or the con parameter. An attacker could use this exploit to read arbitrary files. It was originally reported as CVE-2019-0199, but the original fix was incomplete.
Clone Of:
Environment:
Last Closed:	2020-02-21 04:48:28 UTC
Embargoed:

Attachments	(Terms of Use)

Description Ted Jongseok Won 2020-02-20 05:38:43 UTC

Eclipse Mojarra before version 2.3.14 is vulnerable to a path traversal flaw via either the loc parameter or the con parameter. An attacker could exploit this to read arbitrary files. It was reported as CVE-2019-0199, but it was an incomplete fix.

Upstream Patch:

https://github.com/eclipse-ee4j/mojarra/commit/cefbb9447e7be560e59da2da6bd7cb93776f7741

Comment 1 Ted Jongseok Won 2020-02-20 05:38:51 UTC

External References:

https://github.com/javaserverfaces/mojarra/issues/4364
https://github.com/eclipse-ee4j/mojarra/commit/1b434748d9239f42eae8aa7d37d7a0930c061e24
https://bugs.eclipse.org/bugs/show_bug.cgi?id=550943
https://github.com/eclipse-ee4j/mojarra/commit/cefbb9447e7be560e59da2da6bd7cb93776f7741
https://github.com/eclipse-ee4j/mojarra/issues/4571

Comment 2 Ted Jongseok Won 2020-02-21 04:48:28 UTC

Closed as duplicate with BZ1805006.

*** This bug has been marked as a duplicate of bug 1805006 ***

Note You need to log in before you can comment on or make changes to this bug.

aboyko
aileenc
akoufoud
alazarot
almorale
anstephe
asoldano
atangrin
avibelli
bbaranow
bbuckingham
bcourt
bgeorges
bkearney
bmaxwell
brian.stansberry
btotty
cdewolf
chazlett
darran.lofthouse
dkreling
dosoudil
drieden
etirelli
extras-orphan
ggaughan
gvarsami
hhudgeon
ibek
iweiss
janstey
java-sig-commits
jawilson
jbalunas
jcoleman
jochrist
jpallich
jperkins
jstastny
jwon
kconner
krathod
kverlaen
kwills
ldimaggi
lef
lgao
loleary
lthon
lzap
mmccune
mnovotny
msochure
msvehla
mszynkie
nwallace
paradhya
pdrozd
pgallagh
pjindal
pmackay
psotirop
puntogil
rchan
rguimara
rjerrido
rrajasek
rruss
rsvoboda
rsynek
rwagner
sdaley
smaestri
sokeeffe
spinder
sthorger
tcunning
theute
tkirby
tlestach
tom.jenkinson