Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.1.1.Final, 2.0.31.Final
Affects Version/s: 2.0.30.Final
Component/s: Core
Labels:
- downstream_dependency

Git Pull Request:
https://github.com/undertow-io/undertow/pull/882, https://github.com/undertow-io/undertow/pull/883

The PathResourceManager.getSymlinkBase() method tires to check parent directories in the loop:

        for (int i = nameCount - 1; i>=0; i--) {
            if (Files.isSymbolicLink(f)) {
                return new SymlinkResult(i+1 > rootCount, f);
            }
            f = f.getParent();
        }

So, when security manager is enabled, there is no way to grant suitable FilePermissions to this, and it will fail the security check if not <<ALL FILES>> is granted.

Propose to move the part:

Files.isSymbolicLink(f)

in a doPrivileged block once security manager is enabled.

is incorporated by

JBEAP-19256 [GSS](7.2.z) UNDERTOW-1703 - WFSM000001: Permission check failed ... FilePermission when Security Manager enabled and Web App tries to forward to jsp

Closed

JBEAP-19264 [GSS](7.3.z) WFLY-13392 - WFSM000001: Permission check failed ... FilePermission when Security Manager enabled and Web App tries to forward to jsp

Closed

WFLY-13392 WFSM000001: Permission check failed ... FilePermission when Security Manager enabled and Web App tries to forward to jsp

Closed

WFCORE-4942 Upgrade Undertow to 2.1.1.Final fixes CVE-2020-10719

Closed

Assignee:: Lin Gao

Reporter:: Lin Gao

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2020/04/21 10:32 PM

Updated:: 2020/06/08 2:19 AM

Resolved:: 2020/05/14 11:35 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates