Project

General

Profile

Bug #9200

Bug #9199: myrepos: missing URL sanitization (CVE-2018-7032)

[3.8] myrepos: missing URL sanitization (CVE-2018-7032)

Added by Alicha CH 6 months ago. Updated 5 months ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
Start date:
08/07/2018
Due date:
% Done:

100%

Estimated time:
Affected versions:
Security IDs:

Description

webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM
attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.

References:

https://nvd.nist.gov/vuln/detail/CVE-2018-7032

Patch:

http://source.myrepos.branchable.com/?p=source.git;a=commitdiff;h=40a3df21c73f1bb1b6915cc6fa503f50814664c8


Related issues

Copied from Alpine Linux - Bug #9199: myrepos: missing URL sanitization (CVE-2018-7032)Closed2018-08-07

Associated revisions

Revision b690195c (diff)
Added by Fabian Affolter 5 months ago

main/myrepos: upgrade to 1.20180726

fixes #9200

(cherry picked from commit 593b926a0233cbb19a47882bd2c22346cb7a5530)

History

#1 Updated by Alicha CH 6 months ago

  • Copied from Bug #9199: myrepos: missing URL sanitization (CVE-2018-7032) added

#2 Updated by Fabian Affolter 5 months ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

#3 Updated by Alicha CH 5 months ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from Resolved to Closed
  • Security IDs deleted (CVE-2018-7032)

Also available in: Atom PDF