Bug #63004
closed
CVE-2023-43040 - Improperly verified POST keys.
Added by Christian Rohmann 8 months ago.
Updated 7 months ago.
Tags:
rgw backport_processed
Backport:
pacific quincy reef
Description
There was a post / CVE reported (https://www.openwall.com/lists/oss-security/2023/09/26/10) about a security issue with RGW when dealing with POST keys.
There even is a patch / proposed fix attached to the report.
It seems strange there apparently is no report on this tracker yet?
I took the liberty to raise this now and kindly ask you to clarify if and how this is a real issue and what is happening to get this patched.
Files
thanks for creating the tracker issue. i've attached the patch and test cases that were provided with the initial report
I believe the attached S3 test is missing the bucket name in the form-data (thereby not actually testing the CVE), i.e. ("bucket" , bucket_name)
as part of payload
- Assignee set to Casey Bodley
- Backport set to pacific quincy reef
Nicolas Lindae wrote:
I believe the attached S3 test is missing the bucket name in the form-data (thereby not actually testing the CVE), i.e. ("bucket" , bucket_name)
as part of payload
thank you, i'll fix that. no wonder i was having issues reproducing it
- Status changed from New to Fix Under Review
- Pull request ID set to 53714
- Status changed from Fix Under Review to Pending Backport
- Copied to Backport #63040: pacific: CVE-2023-43040 - Improperly verified POST keys. added
- Copied to Backport #63041: quincy: CVE-2023-43040 - Improperly verified POST keys. added
- Copied to Backport #63042: reef: CVE-2023-43040 - Improperly verified POST keys. added
- Tags changed from rgw to rgw backport_processed
- Status changed from Pending Backport to Resolved
- Target version set to v19.0.0
- % Done changed from 0 to 100
Also available in: Atom
PDF