Impact
An abstract UNIX domain socket responsible for introspection is available without authentication locally to any user with access to the network namespace where the local juju agent is running.
On a juju controller agent, denial of service can be performed by using the /leases/revoke
endpoint. Revoking leases in juju can cause availability issues.
On a juju machine agent that is hosting units, disabling the unit component can be performed using the /units
endpoint with a "stop" action.
Patches
Patch: juju/juju@43f0fc5
Patched in:
- 3.5.4
- 3.4.6
- 3.3.7
- 3.1.10
- 2.9.51
Workarounds
No workaround.
References
https://github.com/juju/juju/blob/725800953aaa29dbeda4f806097bf838e61644dd/worker/introspection/worker.go#L125
References
Impact
An abstract UNIX domain socket responsible for introspection is available without authentication locally to any user with access to the network namespace where the local juju agent is running.
On a juju controller agent, denial of service can be performed by using the
/leases/revoke
endpoint. Revoking leases in juju can cause availability issues.On a juju machine agent that is hosting units, disabling the unit component can be performed using the
/units
endpoint with a "stop" action.Patches
Patch: juju/juju@43f0fc5
Patched in:
Workarounds
No workaround.
References
https://github.com/juju/juju/blob/725800953aaa29dbeda4f806097bf838e61644dd/worker/introspection/worker.go#L125
References