The Puppet Labs Issue Tracker has Moved: https://tickets.puppetlabs.com
Puppet master will save files to any place on disk
|Affected Puppet version:||Branch:|
Ticket tracking is now hosted in JIRA: https://tickets.puppetlabs.com
This issue is currently not available for export. If you are experiencing the issue described below, please file a new ticket in JIRA. Once a new ticket has been created, please add a link to it that points back to this Redmine ticket.
By constructing a marshaled form of a Puppet::FileBucket::File object a user can cause it it to be written to any place on the disk of the puppet master. This could be used for a denial of service attach against the puppet master if an attacker fills a filesystem that can cause systems to stop working. In order to do this the attacker needs no access to the puppet master system, but does need access to agent SSL keys.
#2 Updated by Anonymous almost 3 years ago
- Status changed from Accepted to In Topic Branch Pending Review
Fixes in branches: