CVE-2021-23017 PoC — F5 NGINX Controller 安全漏洞

来源

关联漏洞

Description

nginx 1.15.10 patch against cve-2021-23017  (ingress version)

介绍

nginx 1.15.x base image using [debian-base](quay.io/kubernetes-ingress-controller/debian-base-amd64)

nginx [engine x] is an HTTP and reverse proxy server, a mail proxy server, and a generic TCP proxy server.

This custom nginx image contains:

- [ngx_devel_kit](https://github.com/simpl/ngx_devel_kit)
- [set-misc-nginx-module](https://github.com/openresty/set-misc-nginx-module)
- [headers-more-nginx-module](https://github.com/openresty/headers-more-nginx-module)
- [nginx-http-auth-digest](https://github.com/atomx/nginx-http-auth-digest)
- [ngx_http_substitutions_filter_module](https://github.com/yaoweibin/ngx_http_substitutions_filter_module)
- [nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing)
- [opentracing-cpp](https://github.com/opentracing/opentracing-cpp)
- [zipkin-cpp-opentracing](https://github.com/rnburn/zipkin-cpp-opentracing)
- [dd-opentracing-cpp](https://github.com/DataDog/dd-opentracing-cpp)
- [ModSecurity-nginx](https://github.com/SpiderLabs/ModSecurity-nginx) (only supported in x86_64)
- [brotli](https://github.com/google/brotli)
- [geoip2](https://github.com/leev/ngx_http_geoip2_module)

**How to use this image:**
This image provides a default configuration file with no backend servers.

_Using docker_

```console
docker run -v /some/nginx.con:/etc/nginx/nginx.conf:ro quay.io/kubernetes-ingress-controller/nginx:0.84
```

_Creating a replication controller_

```console
kubectl create -f ./rc.yaml
```

文件快照

 [4.0K]  /data/pocs/23801247e23f70f34d13a6429b8668b69b0c4c1b
├── [2.8K]  Makefile
├── [1010]  rc.yaml
├── [1.4K]  README.md
└── [4.0K]  rootfs
    ├── [ 20K]  build.sh
    ├── [1017]  Dockerfile
    ├── [2.7K]  install_lua_resty_waf.sh
    └── [4.0K]  patches
        ├── [1.2K]  cve-2021-23017.patch
        └── [1.4K]  openresty-ssl_cert_cb_yield.patch

2 directories, 8 files

备注