[
https://issues.apache.org/jira/browse/KAFKA-7702?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16707932#comment-16707932
]
ASF GitHub Bot commented on KAFKA-7702:
---------------------------------------
rajinisivaram opened a new pull request #5994: KAFKA-7702: Fix matching of
prefixed ACLs to match single char prefix
URL: https://github.com/apache/kafka/pull/5994
### Committer Checklist (excluded from commit message)
- [ ] Verify design and implementation
- [ ] Verify test coverage and CI build status
- [ ] Verify documentation (including upgrade notes)
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
> Prefixed ACLs don't work with single character prefix
> -----------------------------------------------------
>
> Key: KAFKA-7702
> URL: https://issues.apache.org/jira/browse/KAFKA-7702
> Project: Kafka
> Issue Type: Bug
> Components: security
> Affects Versions: 2.0.1, 2.1.0
> Reporter: Rajini Sivaram
> Assignee: Rajini Sivaram
> Priority: Major
> Fix For: 2.2.0, 2.1.1, 2.0.2
>
>
> Prefixed ACLs with a single character are not matched correctly against
> resource names. ALLOW rule with single character prefix doesn't grant access
> to any resource and DENY rule with single character prefix doesn't deny
> access to any resource since the prefix is not matched correctly.
> This is not an exploitable security vulnerability since only authenticated
> users with authorization to create ACLs can create the prefixed ACLs.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
