Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 437836 (CVE-2012-4506) - <dev-vcs/gitolite-3.1 : Directory Traversal Security Issue (CVE-2012-4506)
Summary: <dev-vcs/gitolite-3.1 : Directory Traversal Security Issue (CVE-2012-4506)
Status: RESOLVED FIXED
Alias: CVE-2012-4506
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal trivial (vote)
Assignee: Gentoo Security
URL: https://secunia.com/advisories/50896/
Whiteboard: ~2 [noglsa]
Keywords:
Depends on:
Blocks:
 
Reported: 2012-10-10 13:18 UTC by Agostino Sarubbo
Modified: 2012-10-15 07:32 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Agostino Sarubbo gentoo-dev 2012-10-10 13:18:03 UTC 
Description
A security issue has been reported in gitolite, which can be exploited by malicious users to bypass certain security restrictions.

The security issue is caused due to an error when handling certain actions and can be exploited to e.g. perform actions with the privileges of the gitolite server via directory traversal attacks.

Successful exploitation requires using wild card repositories and allowing to match "../" string patterns.

The security issue is reported in version 3.x.


Solution
Fixed in the source code repository.

Provided and/or discovered by
The vendor credits Stephane.

Original Advisory
https://groups.google.com/forum/#!topic/gitolite/K9SnQNhCQ-0/discussion[1-25]
Comment 1 Christian Ruppert (idl0r) gentoo-dev 2012-10-10 18:52:01 UTC 
gitolite-3.1 has just been committed.
Comment 2 Agostino Sarubbo gentoo-dev 2012-10-10 20:44:27 UTC 
(In reply to comment #1)
> gitolite-3.1 has just been committed.

Is that vulnerability reproducible in the 2.x version too?
Comment 3 Christian Ruppert (idl0r) gentoo-dev 2012-10-13 16:12:26 UTC 
(In reply to comment #2)
> (In reply to comment #1)
> > gitolite-3.1 has just been committed.
> 
> Is that vulnerability reproducible in the 2.x version too?

It's not known to be affected.
Comment 4 Agostino Sarubbo gentoo-dev 2012-10-15 07:32:03 UTC 
thanks, fixed.