[Bug 1545750] Re: Access denied if the share path is "/"

Marc Deslauriers marc.deslauriers at canonical.com
Mon Feb 15 15:41:55 UTC 2016


** Also affects: samba (Ubuntu Precise)
   Importance: Undecided
       Status: New

** Also affects: samba (Ubuntu Trusty)
   Importance: Undecided
       Status: New

** Also affects: samba (Ubuntu Wily)
   Importance: Undecided
       Status: New

** Bug watch added: Debian Bug tracker #812429
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812429

** Also affects: samba (Debian) via
   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=812429
   Importance: Unknown
       Status: Unknown

** Changed in: samba (Ubuntu Precise)
       Status: New => Confirmed

** Changed in: samba (Ubuntu Trusty)
       Status: New => Confirmed

** Changed in: samba (Ubuntu Wily)
       Status: New => Confirmed

** Changed in: samba (Ubuntu)
       Status: New => Confirmed

** Changed in: samba (Ubuntu)
   Importance: Undecided => Medium

** Changed in: samba (Ubuntu Precise)
   Importance: Undecided => Medium

** Changed in: samba (Ubuntu Trusty)
   Importance: Undecided => Medium

** Changed in: samba (Ubuntu Wily)
   Importance: Undecided => Medium

** Changed in: samba (Ubuntu)
     Assignee: (unassigned) => Marc Deslauriers (mdeslaur)

** Changed in: samba (Ubuntu Precise)
     Assignee: (unassigned) => Marc Deslauriers (mdeslaur)

** Changed in: samba (Ubuntu Trusty)
     Assignee: (unassigned) => Marc Deslauriers (mdeslaur)

** Changed in: samba (Ubuntu Wily)
     Assignee: (unassigned) => Marc Deslauriers (mdeslaur)

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1545750

Title:
  Access denied if the share path is "/"

Status in samba:
  Unknown
Status in samba package in Ubuntu:
  Confirmed
Status in samba source package in Precise:
  Confirmed
Status in samba source package in Trusty:
  Confirmed
Status in samba source package in Wily:
  Confirmed
Status in samba package in Debian:
  Unknown

Bug description:
  [Impact]

   * User is denied access when trying to access a share "/"

  [Test Case]

   * Setup a Samba server

   * Add a share with path "/"

   * Try to access the share

  [Regression Potential]

   * This has been introduced upstream by security patch CVE-2015-5252.

   * It has been already fixed upstream.

   * This is just a backport of the fix.

  [Other Info]
   
   * Original bug description:

  The fix for bug #11395 / CVE-2015-5252
  https://git.samba.org/?p=samba.git;a=commitdiff;h=7606c0db257b3f9d84da5b2bf5fbb4034cc8d77d
  locked down the path checks in check_reduced_name[_with_privilege]() to prevent unintended access via wide links.

  The new checks do not correctly treat a corner case though: the case
  of the share path being "/". (Important e.g. for using the glusterfs
  VFS module.)

  In this case all operations after tree connect get ACCESS_DENIED.

To manage notifications about this bug go to:
https://bugs.launchpad.net/samba/+bug/1545750/+subscriptions



More information about the foundations-bugs mailing list