Bug #63004
closedCVE-2023-43040 - Improperly verified POST keys.
100%
Description
There was a post / CVE reported (https://www.openwall.com/lists/oss-security/2023/09/26/10) about a security issue with RGW when dealing with POST keys.
There even is a patch / proposed fix attached to the report.
It seems strange there apparently is no report on this tracker yet?
I took the liberty to raise this now and kindly ask you to clarify if and how this is a real issue and what is happening to get this patched.
Files
Updated by Casey Bodley 7 months ago
- File rgw.patch rgw.patch added
- File s3-tests.patch s3-tests.patch added
thanks for creating the tracker issue. i've attached the patch and test cases that were provided with the initial report
Updated by Nicolas Lindae 7 months ago
I believe the attached S3 test is missing the bucket name in the form-data (thereby not actually testing the CVE), i.e. ("bucket" , bucket_name)
as part of payload
Updated by Casey Bodley 7 months ago
- Assignee set to Casey Bodley
- Backport set to pacific quincy reef
Updated by Casey Bodley 7 months ago
Nicolas Lindae wrote:
I believe the attached S3 test is missing the bucket name in the form-data (thereby not actually testing the CVE), i.e.
("bucket" , bucket_name)
as part ofpayload
thank you, i'll fix that. no wonder i was having issues reproducing it
Updated by Casey Bodley 7 months ago
- Status changed from New to Fix Under Review
- Pull request ID set to 53714
Updated by Casey Bodley 7 months ago
s3test case in https://github.com/ceph/s3-tests/pull/527, bug fix in https://github.com/ceph/ceph/pull/53714
Updated by Casey Bodley 7 months ago
- Status changed from Fix Under Review to Pending Backport
Updated by Backport Bot 7 months ago
- Copied to Backport #63040: pacific: CVE-2023-43040 - Improperly verified POST keys. added
Updated by Backport Bot 7 months ago
- Copied to Backport #63041: quincy: CVE-2023-43040 - Improperly verified POST keys. added
Updated by Backport Bot 7 months ago
- Copied to Backport #63042: reef: CVE-2023-43040 - Improperly verified POST keys. added
Updated by Backport Bot 7 months ago
- Tags changed from rgw to rgw backport_processed
Updated by Konstantin Shalygin 7 months ago
- Status changed from Pending Backport to Resolved
- Target version set to v19.0.0
- % Done changed from 0 to 100