OSSA-2020-002: Unprivileged users can retrieve, use and manipulate share networks

Date:

March 10, 2020

CVE:

CVE-2020-9543

Affects

• Manila: <7.4.1, >=8.0.0 <8.1.1, >=9.0.0 <9.1.1

Description

Tobias Rydberg from City Network Hosting AB reported a vulnerability with the manila’s share network APIs. An attacker can retrieve and manipulate share networks that do not belong to them if they possess the share network ID. By exploiting this vulnerability, they can view and manipulate share network subnets and use the share network to create resources such as shares and share groups.

Patches

• https://review.opendev.org/712167 (Pike)

• https://review.opendev.org/712166 (Queens)

• https://review.opendev.org/712165 (Rocky)

• https://review.opendev.org/712164 (Stein)

• https://review.opendev.org/712163 (Train)

• https://review.opendev.org/712158 (Ussuri)

Credits

• Tobias Rydberg from City Network Hosting AB (CVE-2020-9543)

References

• https://launchpad.net/bugs/1861485

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9543

Notes

• The stable/queens and stable/pike branches are under extended maintenance and will receive no new point releases, but patches for them are provided as a courtesy.