Comment 18 for bug 1487450
Revision history for this message
| Fuel Devops McRobotson (fuel-devops-robot) wrote Fix merged to openstack/swift (openstack-ci/fuel-5.1.1-updates/2014.1.1) | #18 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
Reviewed: https:/
Submitter: Vitaly Sedelnik <email address hidden>
Branch: openstack-
Commit: f5e1b93e7f26e0e
Author: Clay Gerrard <email address hidden>
Date: Wed Oct 28 14:07:58 2015
Disallow unsafe tempurl operations to point to unauthorized data
Do not allow PUT tempurls to create pointers to other data. Specifically
disallow the creation of DLO object manifests by returning an error if a
non-safe tempurl request includes an X-Object-Manifest header regardless of
the value of the header.
This prevents discoverability attacks which can use any PUT tempurl to probe
for private data by creating a DLO object manifest and then using the PUT
tempurl to head the object which would 404 if the prefix does not match any
object data or form a valid DLO HEAD response if it does.
This also prevents a tricky and potentially unexpected consequence of PUT
tempurls which would make it unsafe to allow a user to download objects
created by tempurl (even if they just created them) because the result of
reading the object created via tempurl may not be the data which was uploaded.
[CVE-2015-5223]
Co-Authored-By: Kota Tsuyuzaki <email address hidden>
Closes-Bug: #1487450
(cherry-picked from commit 0694e1911d10a18
Change-Id: I91161dfb0f089c