Apache MINA SSHD Path Traversal Vulnerability in sshd-git

A path traversal vulnerability has been identified in the Apache MINA SSHD component 'sshd-git'. This vulnerability arises from inadequate path validation in several git operations, including 'git-upload-pack' and 'git-receive-pack'. As a result, users authenticated via SSH can access git repositories located outside the designated git server root directory. This issue affects Apache MINA SSHD versions 2.0.0 through 2.17.1, as well as pre-release milestones 3.0.0-M1 to 3.0.0-M3, but only in applications that utilize 'sshd-git'.

Impact

Exploitation of this vulnerability allows for unauthorized access to git repositories outside the configured server root directory, potentially leading to exposure of sensitive data or unauthorized modification of repository contents.

Remediation

Users are advised to upgrade to Apache MINA SSHD 2.18.0 or 3.0.0-M4, depending on their current version. For applications using 'sshd-git', additional security controls should be implemented to manage access to git repositories and the operations permitted on them.