Detector CVE-2021-3129 #120
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
magl0
reviewed
Oct 4, 2021
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...ce/cve20213129/src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetectorBootstrapModule.java
Outdated
Show resolved
Hide resolved
...src/main/java/com/google/tsunami/plugins/example/Cve20213129VulnDetectorBootstrapModule.java
Outdated
Show resolved
Hide resolved
@magl0 Thanks a lot for the style suggestions. For now style wise everything should (hopefully) check out :) . |
magl0
reviewed
Oct 6, 2021
There was a problem hiding this comment.
In addition to the inline comments, can you please also:
- Migrate the detector code to
community/detectors? Just to be consistent with the rest of the repo. - Can you please also update the
community/README.mdfile and add a link to this detector code?
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetectorBootstrapModule.java
Outdated
Show resolved
Hide resolved
...t/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetectorTest.java
Outdated
Show resolved
Hide resolved
|
Ready for another round :) |
|
Code style looking good now. We'll start verifying the payload and tests. |
|
This is still under code reviews and payload verification process from a third eye in the Tsunami scanner team. Once it passes we'll merge the pull request. We'll let you know if we found additional issues. |
magl0
reviewed
Oct 14, 2021
.../main/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetector.java
Outdated
Show resolved
Hide resolved
...t/java/com/google/tsunami/plugins/detectors/rce/cve20213129/Cve20213129VulnDetectorTest.java
Outdated
Show resolved
Hide resolved
4 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Hey Google Tsunami Team,
my PR for the Vuln Detector Plugin for CVE-2021-3129 (see Issue #86)
I used the following docker images to verify the vulnerability. I should note that I made my own images as I couldn't get the official
bitnami/laravelimages to run without also requiring a db server for the startup. Also, the bitnami/laravel:8.4.2 docker image, which you would expect to be vulnerable to CVE-2021-3129, is not vulnerable as it builds with a patched dependency offacade/ignition. (However, any servers build before the facade/ignition patch are still vulnerable).Vulnerable image:
Safe image:
Happy to hear your feedback :)