Uploaded image for project: 'Mesos'
  1. Mesos
  2. MESOS-9646

Look into enabling the libarchive extraction flag ARCHIVE_EXTRACT_SECURE_NOABSOLUTEPATHS by default

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: In Progress
    • Major
    • Resolution: Unresolved
    • 1.7.0, 1.8.0
    • None
    • None
    • Mesos Foundations: RI-13 Sp 44, Mesos Foundations: RI13 Sp 45
    • 2

    Description

      The libarchive source provides the following flag: 

      /* Default: Do not try to guard against extracts redirected by symlinks. */
/* Note: With ARCHIVE_EXTRACT_UNLINK, will remove any intermediate symlink. */
#define	ARCHIVE_EXTRACT_SECURE_SYMLINKS	(0x0100)

      https://github.com/libarchive/libarchive/blob/master/libarchive/archive.h#L672-L674

      We should check if the default behavior is unsecure (i.e. allowing a fetched artifact to affect files outside the sandbox).

      Attachments

        Issue Links

          is related to

          Bug - A problem which impairs or prevents the functions of the product. MESOS-9610 Fetcher vulnerability - escaping from sandbox

          • Blocker - Blocks development and/or testing work, production could not run
          • Resolved

          Activity

            People

              bennoe Benno Evers
              kaysoky Joseph Wu
              Gastón Kleiman Gastón Kleiman
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated: