[issue24558] shutil.copytree with symlinks=True opens vulnerabilities

SpaceOne Fri, 03 Jul 2015 05:41:55 -0700

New submission from SpaceOne:

shutil.copytree(src, dst, symlink=True) destroys file system permissions and 
open security issues. See the following python/bash session:


# ls -l /etc/shadow
 -rw-r----- 1 root shadow 1114 May  8 19:10 /etc/shadow
# su foobar
$ ln -s /etc/shadow && exit
# python -c '__import__("shutil").copytree('/home/', '/backups/home', 
symlinks=True)
# ls -l /etc/shadow
-rw-r----- 1 foobar Domain Users 1114 Mai  8 19:10 /etc/shadow

As you can see the file "/etc/shadow" is now owned by the user "foobar" and its 
primary group.

----------
components: Distutils
messages: 246170
nosy: dstufft, eric.araujo, spaceone
priority: normal
severity: normal
status: open
title: shutil.copytree with symlinks=True opens vulnerabilities
type: security

_______________________________________
Python tracker <rep...@bugs.python.org>
<http://bugs.python.org/issue24558>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue24558] shutil.copytree with symlinks=True opens vulnerabilities

Reply via email to