CVE-2022-21687: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

February 1, 2022

gh-ost is a triggerless online schema migration solution for MySQL. It is subject to an arbitrary file read vulnerability. The attacker must have access to the target host or trick an administrator into executing a malicious gh-ost command on a host running gh-ost, plus network access from host running gh-ost to the attack’s malicious MySQL server. The -database parameter does not properly sanitize user input which can lead to arbitrary file reads.

References

github.com/advisories/GHSA-rrp4-2xx3-mv29
github.com/github/gh-ost/commit/a91ab042de013cfd8fbb633763438932d9080d8f
github.com/github/gh-ost/security/advisories/GHSA-rrp4-2xx3-mv29

Code Behaviors & Features

Detect and mitigate CVE-2022-21687 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →