Description
This release of Teleport contains multiple security, bug fixes and improvements.
Escalation attack in agent forwarding
When setting up agent forwarding on the node, Teleport did not handle unix socket creation in a secure manner.
This could have given a potential attacker an opportunity to get Teleport to change arbitrary file permissions to the attacker’s user.
Websockets CSRF
When handling websocket requests, Teleport did not verify that the provided Bearer token was generated for the correct user.
This could have allowed a malicious low privileged Teleport user to use a social engineering attack to gain higher privileged access on the same Teleport cluster.
Denial of service in access requests
When accepting an access request, Teleport did not enforce the maximum request reason size.
This could allow a malicious actor to mount a DoS attack by creating an access request with a very large request reason.
Actions
We recommend upgrading Auth, Proxy, SSH and Kubernetes agents.
Users should backup the Teleport cluster, then follow the standard Teleport upgrade procedure.
Other fixes
- Fixed issue with
tsh sshprinting extra error upon exit when last command was unsuccessful. #12904 - Fixed issue with Kubernetes Access not working with clusters using public CAs. #12873
- Upgrade to Go
v1.17.11. #13107 - Reduced glibc requirements by removing dependency on OpenSSL. #12411
Download
Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.