archive
/
ansible
mirror of https://github.com/ansible/ansible.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

solaris_zone: Allow only valid characters in zone name (#65686)

Browse Source 
CVE-2019-14904 - solaris_zone module accepts zone name and performs actions related to that.
However, there is no user input validation done while performing actions.
A malicious user could provide a crafted zone name which allows executing commands
into the server manipulating the module behaviour.

Adding user input validation as per Solaris Zone documentation fixes this issue.

Signed-off-by: Abhijeet Kasurde <akasurde@redhat.com>
pull/65690/head
Abhijeet Kasurde 5 years ago committed by ansibot
parent c791f916d3
commit 7d2ae7e322
2 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File

5
changelogs/fragments/solaris_zone_name_fix.yml
Unescape Escape View File

@ -0,0 +1,5 @@
bugfixes:
- "**SECURITY** - CVE-2019-14904 - solaris_zone module accepts zone name and performs actions related to that.
However, there is no user input validation done while performing actions. A malicious user could provide a
crafted zone name which allows executing commands into the server manipulating the module behaviour. Adding
user input validation as per Solaris Zone documentation fixes this issue."

10
lib/ansible/modules/system/solaris_zone.py
Unescape Escape View File

@ -43,6 +43,10 @@ options:
name: name:
description: description:
- Zone name. - Zone name.
- A zone name must be unique name.
- A zone name must begin with an alpha-numeric character.
- The name can contain alpha-numeric characters, underbars I(_), hyphens I(-), and periods I(.).
- The name cannot be longer than 64 characters.
type: str type: str
required: true required: true
path: path:
@ -147,6 +151,7 @@ EXAMPLES = '''
import os import os
import platform import platform
import re
import tempfile import tempfile
import time import time
@ -183,6 +188,11 @@ class Zone(object):
if int(self.os_minor) < 10: if int(self.os_minor) < 10:
self.module.fail_json(msg='This module requires Solaris 10 or later') self.module.fail_json(msg='This module requires Solaris 10 or later')
match = re.match('^[a-zA-Z0-9][-_.a-zA-Z0-9]{0,62}$', self.name)
if not match:
self.module.fail_json(msg="Provided zone name is not a valid zone name. "
"Please refer documentation for correct zone name specifications.")
def configure(self): def configure(self):
if not self.path: if not self.path:
self.module.fail_json(msg='Missing required argument: path') self.module.fail_json(msg='Missing required argument: path')

Write Preview
Loading…
Cancel
Save