This article applies to BoKS Manager versions 6.7.0 through 7.1.

Description

A security vulnerability has been found when provisioning registered SSH user public keys to local authorized_keys files. A local user may exploit this vulnerability to create arbitrary files and escalate privileges to root.

Resolution / Workaround

To resolve this problem, download and install:

HFBM-0225 for BoKS Manager 7.1,

HFBM-0226 for BoKS Manager 7.0, or

HFBM-0227 for BoKS Manager 6.7.x

from the HelpSystems Community Portal.

This hotfix includes an updated version of boks_clntd which handles the local update of the authorized_keys file.

Disabling the provisioning of registered user public keys to local authorized_keys files can be used as a workaround. This is done by setting BOKS_SSH_USERKEY_PROVISIONING=no in the ENV file of the BoKS Master and restarting BoKS.


Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018