[Touch-packages] [Bug 1483751] Re: Issues traversing a sftp server when files or folders contain the character "]"
This bug was fixed in the package openssh - 1:9.2p1-2ubuntu3 --- openssh (1:9.2p1-2ubuntu3) mantic; urgency=medium * Fix upgrade of openssh-server with active ssh session (LP: #2020474) - debian/patches/systemd-socket-activation.patch: + Do force closing of listen sockets in child process + Set rexec_flag = 0 when sshd is socket-activated so that child process does not re-exec - debian/openssh-server.postint: + When upgrading from affected versions of openssh, do not try to restart systemd units, and instead indicate that a reboot is required - debian/tests/systemd-socket-activation: + Reboot the testbed before starting the test - debian/rules: + Do not stop ssh.socket on upgrade * d/p/test-set-UsePAM-no-on-some-tests.patch: set UsePAM=no for some tests openssh (1:9.2p1-2ubuntu2) mantic; urgency=medium * debian/README.Debian: Fix path of addresses.conf drop-in openssh (1:9.2p1-2ubuntu1) mantic; urgency=medium * Merge with Debian unstable (LP: #2018094). Remaining changes: - debian/rules: modify dh_installsystemd invocations for socket-activated sshd - debian/openssh-server.postinst: handle migration of sshd_config options to systemd socket options on upgrade. - debian/README.Debian: document systemd socket activation. - debian/patches/socket-activation-documentation.patch: Document in sshd_config(5) that ListenAddress and Port no longer work. - debian/openssh-server.templates: include debconf prompt explaining when migration cannot happen due to multiple ListenAddress values - debian/.gitignore: drop file - debian/openssh-server.postrm: remove systemd drop-ins for socket-activated sshd on purge - debian/openssh-server.ucf-md5sum: Update list of stock sshd_config checksums to include those from jammy and kinetic. - debian/openssh-server.tmpfile,debian/systemd/ssh.service: Move /run/sshd creation out of the systemd unit to a tmpfile config so that sshd can be run manually if necessary without having to create this directory by hand. - debian/patches/systemd-socket-activation.patch: Fix sshd re-execution behavior when socket activation is used - debian/tests/systemd-socket-activation: Add autopkgtest for systemd socket activation functionality. * Dropped changes, included in Debian: - debian/patches/systemd-socket-activation.patch: Initial implementation * New changes: - debian/README.Debian: mention drop-in configurations in instructions for disabling sshd socket activation (LP: #2017434). - debian/openssh-server.ucf-md5sum: update for Ubuntu delta openssh (1:9.2p1-2) unstable; urgency=medium * Fix mistakenly-unreleased entry for 1:9.2p1-1 in debian/NEWS. openssh (1:9.2p1-1) unstable; urgency=medium * Set "UsePAM yes" when running regression tests, to match our default sshd configuration. * Ignore Lintian error about depending on lsb-base for now, to avoid problems with partial upgrades on non-default init systems. * New upstream release (https://www.openssh.com/releasenotes.html#9.2p1): - [SECURITY] sshd(8): fix a pre-authentication double-free memory fault introduced in OpenSSH 9.1. This is not believed to be exploitable, and it occurs in the unprivileged pre-auth process that is subject to chroot(2) and is further sandboxed on most major platforms. - [SECURITY] ssh(8): in OpenSSH releases after 8.7, the PermitRemoteOpen option would ignore its first argument unless it was one of the special keywords "any" or "none", causing the permission list to fail open if only one permission was specified. - [SECURITY] ssh(1): if the CanonicalizeHostname and CanonicalizePermittedCNAMEs options were enabled, and the system/libc resolver did not check that names in DNS responses were valid, then use of these options could allow an attacker with control of DNS to include invalid characters (possibly including wildcards) in names added to known_hosts files when they were updated. These names would still have to match the CanonicalizePermittedCNAMEs allow-list, so practical exploitation appears unlikely. - ssh(1): add a new EnableEscapeCommandline ssh_config(5) option that controls whether the client-side ~C escape sequence that provides a command-line is available. Among other things, the ~C command-line could be used to add additional port-forwards at runtime. This option defaults to "no", disabling the ~C command-line that was previously enabled by default. - sshd(8): add support for channel inactivity timeouts via a new sshd_config(5) ChannelTimeout directive. This allows channels that have not seen traffic in a configurable interval to be automatically closed. Different timeouts may be applied to session, X11, agent and TCP
[Touch-packages] [Bug 1483751] Re: Issues traversing a sftp server when files or folders contain the character "]"
I filed https://bugzilla.mindrot.org/show_bug.cgi?id=3069 upstream ** Bug watch added: OpenSSH Portable Bugzilla #3069 https://bugzilla.mindrot.org/show_bug.cgi?id=3069 ** Also affects: openssh via https://bugzilla.mindrot.org/show_bug.cgi?id=3069 Importance: Unknown Status: Unknown -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1483751 Title: Issues traversing a sftp server when files or folders contain the character "]" Status in portable OpenSSH: Unknown Status in openssh package in Ubuntu: Triaged Bug description: I am unsure if the bug is with openssh sftp client or within openssh- sftp-server When traversing an sftp server, I encounter issues for files and, in particular, directories containing the character "]". Tab completion does not escape the character in sftp shell, however, in bash it will escape the character for tab completion. If I "cd" into a directory that contains the character I cannot get any files with in that directory and I have to rename the directory outside of the sftp shell to remove the character in order to be able to correctly get files. Ex: sftp> cd Movie\ \[1080p]/ sftp> ls Movie.1080p.mp4 sftp> get Movie.1080p.mp4 File "/home/hitsuji/movies/Movie [1080p]/Movie.1080p.mp4" not found. sftp> ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-45.60~14.04.1-generic 3.16.7-ckt14 Uname: Linux 3.16.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 CurrentDesktop: Unity Date: Tue Aug 11 14:36:00 2015 InstallationDate: Installed on 2015-05-01 (101 days ago) InstallationMedia: Ubuntu 14.04.2 LTS "Trusty Tahr" - Release amd64 (20150218.1) RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/openssh/+bug/1483751/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1483751] Re: Issues traversing a sftp server when files or folders contain the character "]"
Thank you for taking the time to report this bug and helping to make Ubuntu better. I appreciate the quality of this bug report and I'm sure it'll be helpful to others experiencing the same issue. This is even slightly worse IMHO as it does stripped mapping. If on a server you have $ ll \[a\]/ a '[a]/': total 8 drwxrwxr-x 2 ubuntu ubuntu 4096 Sep 9 09:51 ./ drwxr-xr-x 9 ubuntu ubuntu 4096 Sep 9 09:51 ../ -rw-rw-r-- 1 ubuntu ubuntu0 Sep 9 09:51 foo a: total 8 drwxrwxr-x 2 ubuntu ubuntu 4096 Sep 9 09:51 ./ drwxr-xr-x 9 ubuntu ubuntu 4096 Sep 9 09:51 ../ -rw-rw-r-- 1 ubuntu ubuntu0 Sep 9 09:51 foo And you are in there with sftp and try to get the file from [a] then you will get the "other one". sftp> pwd Remote working directory: /home/ubuntu/[a] sftp> ls foo sftp> get foo Fetching /home/ubuntu/a/foo to foo Never the less this sounds like an upstream bug/feature-request to me request I'd think. Well and it sit around without anyone noticing for years :-/ But today is my bug triage duty and I at least want to guide you to the right place :-) I tried this up to (including) the last version of 8.0p1. But as much as this seems wrong, this isn't (IMHO) the kind of issue that Ubuntu would develop on its own and keep a delta. After all name/path handling often is security relevant and important for scripts (you'd not want different hosts to behave differently). The best route to getting it fixed in Ubuntu in this case would be to file an upstream bug if you're able to do that. Otherwise, I'm not sure what we can do directly in Ubuntu to fix the problem. If you do end up filing an upstream bug, please link to it from here. Thanks! -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1483751 Title: Issues traversing a sftp server when files or folders contain the character "]" Status in openssh package in Ubuntu: Triaged Bug description: I am unsure if the bug is with openssh sftp client or within openssh- sftp-server When traversing an sftp server, I encounter issues for files and, in particular, directories containing the character "]". Tab completion does not escape the character in sftp shell, however, in bash it will escape the character for tab completion. If I "cd" into a directory that contains the character I cannot get any files with in that directory and I have to rename the directory outside of the sftp shell to remove the character in order to be able to correctly get files. Ex: sftp> cd Movie\ \[1080p]/ sftp> ls Movie.1080p.mp4 sftp> get Movie.1080p.mp4 File "/home/hitsuji/movies/Movie [1080p]/Movie.1080p.mp4" not found. sftp> ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-45.60~14.04.1-generic 3.16.7-ckt14 Uname: Linux 3.16.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 CurrentDesktop: Unity Date: Tue Aug 11 14:36:00 2015 InstallationDate: Installed on 2015-05-01 (101 days ago) InstallationMedia: Ubuntu 14.04.2 LTS "Trusty Tahr" - Release amd64 (20150218.1) RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1483751/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1483751] Re: Issues traversing a sftp server when files or folders contain the character "]"
Can confirm: sftp> cd Foo\ \[bar\] sftp> ls hello.txt sftp> get hello.txt File "/home/lfaraone/Foo [bar]/hello.txt" not found. sftp> ** Changed in: openssh (Ubuntu) Importance: Undecided => Low ** Changed in: openssh (Ubuntu) Status: New => Triaged -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1483751 Title: Issues traversing a sftp server when files or folders contain the character "]" Status in openssh package in Ubuntu: Triaged Bug description: I am unsure if the bug is with openssh sftp client or within openssh- sftp-server When traversing an sftp server, I encounter issues for files and, in particular, directories containing the character "]". Tab completion does not escape the character in sftp shell, however, in bash it will escape the character for tab completion. If I "cd" into a directory that contains the character I cannot get any files with in that directory and I have to rename the directory outside of the sftp shell to remove the character in order to be able to correctly get files. Ex: sftp> cd Movie\ \[1080p]/ sftp> ls Movie.1080p.mp4 sftp> get Movie.1080p.mp4 File "/home/hitsuji/movies/Movie [1080p]/Movie.1080p.mp4" not found. sftp> ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-45.60~14.04.1-generic 3.16.7-ckt14 Uname: Linux 3.16.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 CurrentDesktop: Unity Date: Tue Aug 11 14:36:00 2015 InstallationDate: Installed on 2015-05-01 (101 days ago) InstallationMedia: Ubuntu 14.04.2 LTS "Trusty Tahr" - Release amd64 (20150218.1) RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1483751/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1483751] Re: Issues traversing a sftp server when files or folders contain the character ]
** Description changed: I am unsure if the bug is with openssh sftp client or within openssh- sftp-server When traversing an sftp server, I encounter issues for files and, in particular, directories containing the character ]. Tab completion - does not escape the character, however, if I cd into a directory that + does not escape the character in sftp shell, however, in bash it will + escape the character for tab completion. If I cd into a directory that contains the character I cannot get any files with in that directory and I have to rename the directory outside of the sftp shell to remove the character in order to be able to correctly get files. Ex: sftp cd Movie\ \[1080p]/ sftp ls - Movie.1080p.mp4 + Movie.1080p.mp4 sftp get Movie.1080p.mp4 File /home/hitsuji/movies/Movie [1080p]/Movie.1080p.mp4 not found. sftp ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-45.60~14.04.1-generic 3.16.7-ckt14 Uname: Linux 3.16.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 CurrentDesktop: Unity Date: Tue Aug 11 14:36:00 2015 InstallationDate: Installed on 2015-05-01 (101 days ago) InstallationMedia: Ubuntu 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) RelatedPackageVersions: - ssh-askpass N/A - libpam-sshN/A - keychain N/A - ssh-askpass-gnome 1:6.6p1-2ubuntu2 + ssh-askpass N/A + libpam-sshN/A + keychain N/A + ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1483751 Title: Issues traversing a sftp server when files or folders contain the character ] Status in openssh package in Ubuntu: New Bug description: I am unsure if the bug is with openssh sftp client or within openssh- sftp-server When traversing an sftp server, I encounter issues for files and, in particular, directories containing the character ]. Tab completion does not escape the character in sftp shell, however, in bash it will escape the character for tab completion. If I cd into a directory that contains the character I cannot get any files with in that directory and I have to rename the directory outside of the sftp shell to remove the character in order to be able to correctly get files. Ex: sftp cd Movie\ \[1080p]/ sftp ls Movie.1080p.mp4 sftp get Movie.1080p.mp4 File /home/hitsuji/movies/Movie [1080p]/Movie.1080p.mp4 not found. sftp ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-45.60~14.04.1-generic 3.16.7-ckt14 Uname: Linux 3.16.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 CurrentDesktop: Unity Date: Tue Aug 11 14:36:00 2015 InstallationDate: Installed on 2015-05-01 (101 days ago) InstallationMedia: Ubuntu 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) RelatedPackageVersions: ssh-askpass N/A libpam-sshN/A keychain N/A ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1483751/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
