2022-07-21 16:11:11 +00:00
|
|
|
.. _CVE-2022-0670:
|
|
|
|
|
|
|
|
CVE-2022-0670: Native-CephFS Manila Path-restriction bypass
|
|
|
|
===========================================================
|
|
|
|
|
|
|
|
Summary
|
|
|
|
-------
|
|
|
|
|
2022-10-11 04:36:10 +00:00
|
|
|
Users who were running OpenStack Manila to export native CephFS and who
|
2022-07-21 16:11:11 +00:00
|
|
|
upgraded their Ceph cluster from Nautilus (or earlier) to a later
|
2022-10-11 04:36:10 +00:00
|
|
|
major version were vulnerable to an attack by malicious users. The
|
2022-07-21 16:11:11 +00:00
|
|
|
vulnerability allowed users to obtain access to arbitrary portions of
|
2022-10-11 04:36:10 +00:00
|
|
|
the CephFS filesystem hierarchy instead of being properly restricted
|
2022-07-21 16:11:11 +00:00
|
|
|
to their own subvolumes. The vulnerability is due to a bug in the
|
|
|
|
"volumes" plugin in Ceph Manager. This plugin is responsible for
|
2022-10-11 04:36:10 +00:00
|
|
|
managing Ceph File System subvolumes, which are used by OpenStack
|
2022-07-21 16:11:11 +00:00
|
|
|
Manila services as a way to provide shares to Manila users.
|
|
|
|
|
2022-10-11 04:36:10 +00:00
|
|
|
Again, this vulnerability impacts only OpenStack Manila clusters that
|
2022-07-21 16:11:11 +00:00
|
|
|
provided native CephFS access to their users.
|
|
|
|
|
|
|
|
Affected versions
|
|
|
|
-----------------
|
|
|
|
|
|
|
|
Any version of Ceph running OpenStack Manila that was upgraded from Nautilus
|
|
|
|
or earlier.
|
|
|
|
|
|
|
|
Fixed versions
|
|
|
|
--------------
|
|
|
|
|
|
|
|
* Quincy v17.2.2 (and later)
|
|
|
|
* Pacific v16.2.10 (and later)
|
2022-08-10 09:09:55 +00:00
|
|
|
* Octopus v15.2.17
|
2022-07-21 16:11:11 +00:00
|
|
|
|
|
|
|
Recommendations
|
|
|
|
---------------
|
|
|
|
|
|
|
|
#. Users should upgrade to a patched version of Ceph at their earliest
|
|
|
|
convenience.
|
|
|
|
|
|
|
|
#. Administrators who are
|
|
|
|
concerned they may have been impacted should audit the CephX keys in
|
|
|
|
their cluster for proper path restrictions.
|