FreeBSD : gitlab -- Directory traversal via 'import/export' feature (10968dfd-a687-11e6-b2d3-60a44ce6887b)

This script is Copyright (C) 2016-2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

GitLab reports :

The import/export feature did not properly check for symbolic links in
user-provided archives and therefore it was possible for an
authenticated user to retrieve the contents of any file accessible to
the GitLab service account. This included sensitive files such as
those that contain secret tokens used by the GitLab service to
authenticate users.

See also :

https://about.gitlab.com/2016/11/02/cve-2016-9086-patches/
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=214360
http://www.nessus.org/u?f5bcaf46

Solution :

Update the affected packages.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 94663 ()

Bugtraq ID:

CVE ID: CVE-2016-9086

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now