Описание
@backstage/backend-common
is a common functionality library for backends for Backstage, an open platform for building developer portals. In @backstage/backend-common
prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the resolveSafeChildPath
utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in @backstage/backend-common
versions 0.21.1, 0.20.2, and 0.19.10.
A flaw was found in the backstage/backend-common package. Path checks with the "resolveSafeChildPath" utility were not exhaustive enough, leading to the risk of a path traversal vulnerability if symlinks are injected by attackers.
Отчет
RHDH actions do not use symlinks and would not be exposed. There is a small chance that customers can use 3rd party software templates that use symlinks but it's a low risk and to our knowledge, none of our customers are going into production with 1.0. If they had intentions to, we would advise them to use 1.1 which is patched already. Since 1.0 is in maintenance mode, our decision is aligned with our lifecycle policy to only backport critical and important CVEs. So marking as would not fix.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
Платформа | Пакет | Состояние | Рекомендация | Релиз |
---|---|---|---|---|
Red Hat Developer Hub | rhdh-operator-container | Not affected | ||
Red Hat Developer Hub | rhdh/rhdh-hub-rhel9 | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
`@backstage/backend-common` is a common functionality library for backends for Backstage, an open platform for building developer portals. In `@backstage/backend-common` prior to versions 0.21.1, 0.20.2, and 0.19.10, paths checks with the `resolveSafeChildPath` utility were not exhaustive enough, leading to risk of path traversal vulnerabilities if symlinks can be injected by attackers. This issue is patched in `@backstage/backend-common` versions 0.21.1, 0.20.2, and 0.19.10.
`@backstage/backend-common` vulnerable to path traversal through symlinks
EPSS
5.5 Medium
CVSS3