Skip to content

fix: Disable VRT support in TiTiler by default #243

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 13, 2025
Merged

fix: Disable VRT support in TiTiler by default #243

merged 1 commit into from
Nov 13, 2025

Conversation

@sunu
Copy link
Member

@sunu sunu commented Jul 3, 2025
edited by pantierra
Loading

Closes #242:

Skip VRT driver to prevent arbitrary file reading vulnerability reported in GDAL issue OSGeo/gdal#12645 and developmentseed/titiler#1180. This configuration prevents exploitation of GDAL's VRT driver which can be used to read arbitrary files from the filesystem.

Addresses #242. But we might need additional precautions to prevent arbitrary filesystem access through other GDAL drivers.

@ciaransweet
Copy link
Contributor

ciaransweet commented Sep 3, 2025

@pantierra @batpad @emmanuelmathot @sunu is there any reason to not include this change? Conscious it's been open for ~2 months now

@pantierra
Copy link
Contributor

pantierra commented Sep 3, 2025

I think we wanted to check on Vincent's suggestion to "create a user within the image which has no critical filesystem access". Now I am wondering if this is still a problem, as it seemed to be fixed upstream.

@pantierra pantierra changed the title Disable VRT support in TiTiler by default fix: Disable VRT support in TiTiler by default Nov 13, 2025
@sunu @pantierra
Skip GDAL VRT driver to mitigate security issue
abbfba0 
Skip VRT driver to prevent arbitrary file reading vulnerability
reported in GDAL issue OSGeo/gdal#12645
and developmentseed/titiler#1180.
This configuration prevents exploitation of GDAL's VRT driver
which can be used to read arbitrary files from the filesystem.
@pantierra pantierra merged commit bf14a5f into main Nov 13, 2025
4 checks passed
@pantierra pantierra deleted the fix/gdal-vrt branch November 13, 2025 22:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pantierra pantierra pantierra approved these changes

@batpad batpad Awaiting requested review from batpad

@emmanuelmathot emmanuelmathot Awaiting requested review from emmanuelmathot

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Disable VRT support in TiTiler by default

4 participants

@sunu @ciaransweet @pantierra