This article applies to BoKS Manager versions 6.7.0 through 7.1.
A security vulnerability has been found when provisioning registered SSH user public keys to local authorized_keys files. A local user may exploit this vulnerability to create arbitrary files and escalate privileges to root.
Resolution / Workaround
To resolve this problem, download and install:
HFBM-0225 for BoKS Manager 7.1,
HFBM-0226 for BoKS Manager 7.0, or
HFBM-0227 for BoKS Manager 6.7.x
from the HelpSystems Community Portal.
This hotfix includes an updated version of boks_clntd which handles the local update of the authorized_keys file.
Disabling the provisioning of registered user public keys to local authorized_keys files can be used as a workaround. This is done by setting BOKS_SSH_USERKEY_PROVISIONING=no in the ENV file of the BoKS Master and restarting BoKS.
Still have questions? We can help. Submit a case to Technical Support.