[BAM-14038] Privilege escalation

Type: Bug
Resolution: Fixed
Priority: Highest
Fix Version/s: 5.2.2
Affects Version/s: None
Component/s: None
Labels:
- advisory
- security

Bug Fix Policy:
View Atlassian Server bug fix policy

We have identified and fixed a vulnerability in Bamboo which allowed unauthenticated users to commit actions on behalf of any other authorised user. In order to exploit this vulnerability, an attacker requires access to your Bamboo web interface.

A Bamboo server is only vulnerable if it has been configured to be a part of an Application link with Trusted Applications authentication. This is not the default configuration.

The vulnerability affects all supported versions of Bamboo up to and including 5.2.1. It has been fixed in 5.2.2.

For more information, see our security advisory.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List

patch_bamboo_5_0_1.tar.gz
178 kB
08/Dec/2013 9:28 PM
patch_bamboo_5_1_1.tar.gz
178 kB
08/Dec/2013 9:28 PM
patch_bamboo_5_2_1.tar.gz
178 kB
08/Dec/2013 9:28 PM

mentioned in: Bamboo Security Advisory 2014-02-26; Page No Confluence page found with the given URL.; Page No Confluence page found with the given URL.; Page No Confluence page found with the given URL.; Page No Confluence page found with the given URL.; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(16 mentioned in)

Marek Went (Inactive) added a comment - 08/Dec/2013 9:38 PM - edited

Please find attached patches for following Bamboo versions:

Bamboo 5.0.1 - patch_bamboo_5_0_1.tar.gz
Bamboo 5.1.1 - patch_bamboo_5_1_1_tar.gz
Bamboo 5.2.1 - patch_bamboo_5_2_1.tar.gz

To apply the patch please:

Bamboo 5.0.1:
- stop Bamboo
- goto bamboo_home/webapp/WEB-INF/lib
- move files <Bamboo-INSTALL>/webapp/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder
  - applinks-api-3.11.0-m8.jar
  - applinks-host-3.11.0-m8.jar
  - applinks-spi-3.11.0-m8.jar
  - atlassian-trusted-apps-core-2.5.2.jar
  - atlassian-trusted-apps-seraph-integration-2.5.2.jar
  - sal-api-2.9.1.jar
  - sal-spi-2.9.1.jar
  - sal-spring-2.9.1.jar
- unpack content of attached patch in the same directory
- start Bamboo

Bamboo 5.1.1:
- stop Bamboo
- goto bamboo_home/atlassian-bamboo/WEB-INF/lib
- move files <Bamboo-INSTALL>/atlassian-bamboo/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder
  - applinks-api-4.0.0-m07.jar
  - applinks-host-4.0.0-m07.jar
  - applinks-spi-4.0.0-m07.jar
  - atlassian-trusted-apps-core-2.5.2.jar
  - atlassian-trusted-apps-seraph-integration-2.5.2.jar
  - sal-api-2.10.2.jar
  - sal-spi-2.10.2.jar
  - sal-spring-2.10.2.jar
- unpack content of attached patch in the same directory
- start Bamboo

Bamboo 5.2.1:
- stop Bamboo
- goto bamboo_home/atlassian-bamboo/WEB-INF/lib
- move files <Bamboo-INSTALL>/atlassian-bamboo/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder
  - applinks-api-4.0.3.jar
  - applinks-host-4.0.3.jar
  - applinks-spi-4.0.3.jar
  - atlassian-trusted-apps-core-3.0.2.jar
  - atlassian-trusted-apps-seraph-integration-3.0.2.jar
  - sal-api-2.10.9.jar
  - sal-spi-2.10.9.jar
  - sal-spring-2.10.9.jar
- unpack content of attached patch in the same directory
- start Bamboo

Marek Went (Inactive) added a comment - 08/Dec/2013 9:38 PM - edited Please find attached patches for following Bamboo versions: Bamboo 5.0.1 - patch_bamboo_5_0_1.tar.gz Bamboo 5.1.1 - patch_bamboo_5_1_1_tar.gz Bamboo 5.2.1 - patch_bamboo_5_2_1.tar.gz To apply the patch please: Bamboo 5.0.1: stop Bamboo goto bamboo_home/webapp/WEB-INF/lib move files <Bamboo-INSTALL>/webapp/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder applinks-api-3.11.0-m8.jar applinks-host-3.11.0-m8.jar applinks-spi-3.11.0-m8.jar atlassian-trusted-apps-core-2.5.2.jar atlassian-trusted-apps-seraph-integration-2.5.2.jar sal-api-2.9.1.jar sal-spi-2.9.1.jar sal-spring-2.9.1.jar unpack content of attached patch in the same directory start Bamboo Bamboo 5.1.1: stop Bamboo goto bamboo_home/atlassian-bamboo/WEB-INF/lib move files <Bamboo-INSTALL>/atlassian-bamboo/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder applinks-api-4.0.0-m07.jar applinks-host-4.0.0-m07.jar applinks-spi-4.0.0-m07.jar atlassian-trusted-apps-core-2.5.2.jar atlassian-trusted-apps-seraph-integration-2.5.2.jar sal-api-2.10.2.jar sal-spi-2.10.2.jar sal-spring-2.10.2.jar unpack content of attached patch in the same directory start Bamboo Bamboo 5.2.1: stop Bamboo goto bamboo_home/atlassian-bamboo/WEB-INF/lib move files <Bamboo-INSTALL>/atlassian-bamboo/WEB-INF/lib to a location outside the <Bamboo-INSTALL> folder applinks-api-4.0.3.jar applinks-host-4.0.3.jar applinks-spi-4.0.3.jar atlassian-trusted-apps-core-3.0.2.jar atlassian-trusted-apps-seraph-integration-3.0.2.jar sal-api-2.10.9.jar sal-spi-2.10.9.jar sal-spring-2.10.9.jar unpack content of attached patch in the same directory start Bamboo

Assignee:: Unassigned

Reporter:: Renan Battaglin

Affected customers:: 0 This affects my team

Watchers:: 3 Start watching this issue

Created:: 21/Nov/2013 5:20 AM

Updated:: 05/Jan/2023 10:32 AM

Resolved:: 21/Nov/2013 11:46 PM

Bamboo Data Center

Details

Description

Attachments

Attachments

Issue Links

Forms

Activity

Collapse comment: Marek Went (Inactive) added a comment - 08/Dec/2013 9:38 PM, Edited by Marek Went - 08/Dec/2013 9:51 PM

Expand comment: Marek Went (Inactive) added a comment - 08/Dec/2013 9:38 PM, Edited by Marek Went - 08/Dec/2013 9:51 PM

People

Dates