CVE-2023-31039

CVE-2023-31039: ServerOptions.pid_file may cause arbitrary code execution

Severity: Important

Affected Versions: Apache bRPC 0.9.0 before 1.5.0

Description: Security vulnerability in Apache bRPC <1.5.0 on all platforms allows attackers to execute arbitrary code via ServerOptions::pid_file. An attacker that can influence the ServerOptions pid_file parameter with which the bRPC server is started can execute arbitrary code with the permissions of the bRPC process.

Solution:

upgrade to bRPC >= 1.5.0, download link: https://dist.apache.org/repos/dist/release/brpc/1.5.0/
If you are using an old version of bRPC and hard to upgrade, you can apply this patch: https://github.com/apache/brpc/pull/2218

Required Configurations:

set brpc::ServerOptions::pid_file from user input

Work Arounds:

Apply this patch: https://github.com/apache/brpc/pull/2218

References:

https://brpc.apache.org
https://www.cve.org/CVERecord?id=CVE-2023-31039

Last modified April 1, 2024: Update oncall report (#169) (918d618)