|
|
Log in / Subscribe / Register

Places to block filesystem traversal

Places to block filesystem traversal

Posted Oct 5, 2018 7:11 UTC (Fri) by epa (subscriber, #39769)
Parent article: New AT_ flags for restricting pathname lookup

It’s not just containers. Path-traversal bugs are a common exploit in archivers like tar or unzip, where unpacking a malicious archive file overwrites things elsewhere in the filesystem. I imagine web servers might also use this flag as an additional defence to make sure they only serve content from the right directory. If the flag existed on all operating systems, a lot of userspace path sanitizing code could be removed.

to post comments

Places to block filesystem traversal

Posted Oct 5, 2018 14:24 UTC (Fri) by smurf (subscriber, #17840) [Link]

Also, userspace sanitation depends on the fact that no second thread exists that modifies the sanitized path before it's passed to the kernel. In-kernel defenses against that sort of thing at least work.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds