Description
This release of Teleport contains 2 security fixes as well as multiple improvements and bug fixes.
[High] OS authorization bypass in SSH tunneling
When establishing an SSH port forwarding connection, Teleport did not
sufficiently validate the specified OS principal.
This could allow an attacker in possession of valid cluster credentials to
establish a TCP tunnel to a node using a non-existent Linux user.
The connection attempt would show up in the audit log as a "port" audit event
(code T3003I) and include a Teleport username in the "user" field.
[High] Teleport authorization bypass in Kubernetes Access
When authorizing a Kubernetes Access request, Teleport did not adequately
validate the target Kubernetes cluster.
This could allow an attacker in possession of valid Kubernetes agent credentials
or a join token to trick Teleport into forwarding requests to a different
Kubernetes cluster.
Every Kubernetes request would show up in the audit log as a "kube.request"
audit event (code T3009I) and include the Kubernetes cluster metadata.
Other improvements and fixes
- Application Access
- AMIs
- Added support for configuring TLS routing mode in AMIs. #23677
- CLI
- Updated
tsh status
to not display internal logins. #23412 - Display year in
tctl
commands output. #23372 - Fixed issue with
tsh
reporting errors about missing webauthn.dll on Windows. #23162 - Added
app_server
support totctl
resource commands. #23137 - Added
--cluster
flag totsh kube sessions
command. #23826
- Updated
- Database Access
- Fixed issue with query audit events always having
success: false
status. #23275
- Fixed issue with query audit events always having
- Desktop Access
- Updated setup script to be idempotent. #23175
- Kubernetes Access
- Machine ID
- Added ability to specify memory backend using CLI parameters. #23497
- Moderated Sessions
- Proxy Peering
- Fixed proxy peering issues when running behind a load balancer. #23507
- Reverse Tunnels
- Performance & scalability
- Tooling
- Web UI
Download
Download the current and previous releases of Teleport at https://goteleport.com/download.
labels: security-patch=yes