Bug 1083858 (CVE-2014-0163) - CVE-2014-0163 Openshift: Multiple shell command injection flaws
Summary: CVE-2014-0163 Openshift: Multiple shell command injection flaws
Keywords:
Status: CLOSED WONTFIX
Alias: CVE-2014-0163
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
high
high
Target Milestone: ---
Assignee: Red Hat Product Security
QA Contact:
URL:
Whiteboard:
Depends On: 1082972 1160122 1187463
Blocks: 1083866
TreeView+ depends on / blocked
 
Reported: 2014-04-03 06:06 UTC by Garth Mollett
Modified: 2021-02-17 06:42 UTC (History)
10 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-12-04 06:19:37 UTC


Attachments (Terms of Use)

Description Garth Mollett 2014-04-03 06:06:44 UTC
Jeremy Choi of Red Hat discovered that OpenShift is vulnerable to several shell command injection flaws due to unsanitized data being passed directly into shell commands. Remote code execution as root has been demonstrated via (authenticated) mcollective commands however other attack vectors may also exist.

Comment 2 Kurt Seifried 2014-12-03 21:34:28 UTC
This issue is only exploitable if the attacker has shell access to the broker node, which should never be allowed in production. As such the impact has been downgraded from critical to important.

Comment 3 Kurt Seifried 2014-12-04 06:19:37 UTC
Statement:

This issue affects the versions of rubygem-openshift-origin-node as shipped with Red Hat OpenShift Enterprise 2. Red Hat Product Security has rated this issue as having Important security impact, however this issue only affects systems using a non supported configuration (e.g. broker and node on the same host, or untrusted users on the broker servers). A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Comment 4 Kurt Seifried 2015-01-30 05:52:50 UTC
Created rubygem-openshift-origin-node tracking bugs for this issue:

Affects: fedora-all [bug 1187463]


Note You need to log in before you can comment on or make changes to this bug.