Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories: GSA_kwCzR0hTQS0zcHFoLXA3MmMtZmo4Nc0Xhw

Improper Preservation of Permissions in github.com/cloudflare/cfrpki/cmd/octorpki

Impact

When copying files with rsync, octorpki uses the "-a" flag 0, which forces rsync to copy binaries with the suid bit set as root. Since the provided service definition defaults to root (https://github.com/cloudflare/cfrpki/blob/master/package/octorpki.service) this could allow for a vector, when combined with another vulnerability that causes octorpki to process a malicious TAL file, for a local privilege escalation.

For more information

If you have any questions or comments about this advisory email us at [email protected]

Permalink: https://github.com/advisories/GHSA-3pqh-p72c-fj85
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0zcHFoLXA3MmMtZmo4Nc0Xhw
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: over 2 years ago
Updated: 6 months ago


Identifiers: GHSA-3pqh-p72c-fj85, CVE-2021-3978
References: Repository: https://github.com/cloudflare/cfrpki

Affected Packages

go:github.com/cloudflare/cfrpki
Dependent packages: 1
Dependent repositories: 1
Downloads:
Affected Version Ranges: < 1.4.2
Fixed in: 1.4.2
All affected versions: 1.1.0, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.2.0, 1.2.1, 1.2.2, 1.3.0, 1.4.0, 1.4.1
All unaffected versions: 1.4.2, 1.4.3, 1.4.4, 1.5.0, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.5.8, 1.5.9, 1.5.10