[DERBY-6631] FileMonitor can be used to elevate an application's privileges - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 10.11.1.1
Fix Version/s: 10.12.1.1
Component/s: Services
Labels:
- derby_backport_reject_10_11

Urgency:
Normal
Bug behavior facts:

Security

Description

Various vulnerabilities in FileMonitor allow applications to perform security-sensitive operations with the elevated privileges granted to Derby:

getDaemonThread() - The application can call this method in order to create threads, using Derby's elevated privileges.

getJVMProperty() - The application can call this in order to read system properties using Derby's elevated privileges.

setThreadPriority() - The application can call this method to change the priority of a daemon thread it has created. This call will execute with Derby's elevated privileges.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

d6631-1b-setThreadPriority.diff
25/Aug/14 12:21
5 kB
Knut Anders Hatlen
d6631-1a-setThreadPriority.diff
22/Aug/14 13:33
3 kB
Knut Anders Hatlen

Issue Links

relates to

DERBY-6648 Application code should not be able to call ContextService.getContextOrNull()

Closed

Activity

People

Assignee:: Unassigned

Reporter:: Richard N. Hillegas

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 20/Jun/14 16:38

Updated:: 02/Oct/14 22:15

Resolved:: 29/Sep/14 13:01