CVE-2017-14804

package builds could use directory traversal to write outside of target area

CVSS 9.9 CRITICALEPSS 1.7%CWE-22

In short

A flaw in the build package allowed untrusted builds to write files outside their intended directory during extraction, potentially compromising the entire system. This happened because the package didn't validate directory names properly.

Technical detail

The build package prior to version 20171128 failed to sanitize directory names during extraction of build artifacts, enabling a directory traversal attack (CWE-22). An untrusted build could exploit this to write files outside the buildroot, escaping containment and potentially achieving arbitrary file write on the host system.

Summary generated and translated by AI from the official description.

The build package before 20171128 did not check directory names during extraction of build results that allowed untrusted builds to write outside of the target system,allowing escape out of buildroots.

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

SUSE · build

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://lists.opensuse.org/opensuse-security-announce/2017-12/msg00024.html https://lists.opensuse.org/opensuse-security-announce/2017-12/msg00025.html https://lists.opensuse.org/opensuse-security-announce/2018-01/msg00030.html