The Samba-Bugzilla – Attachment 3965 Details for
Bug 6151
--safe-links can be fooled by adding extra slashes to the path
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
fixes this bug
patch (text/plain), 672 bytes, created by
Erik Sjölund
on 2009-03-02 16:44:30 UTC
(
hide
)
Description:
fixes this bug
Filename:
MIME Type:
Creator:
Erik Sjölund
Created:
2009-03-02 16:44:30 UTC
Size:
672 bytes
patch
obsolete
>--- util.c 2009-03-02 22:57:56.000000000 +0100 >+++ util.c.new 2009-03-02 22:57:50.000000000 +0100 >@@ -1205,7 +1205,7 @@ > for (name = src; (slash = strchr(name, '/')) != 0; name = slash+1) { > if (strncmp(name, "../", 3) == 0) { > depth = 0; >- } else if (strncmp(name, "./", 2) == 0) { >+ } else if ((strncmp(name, "./", 2) == 0) || (strncmp(name, "/", 1) == 0)) { > /* nothing */ > } else { > depth++; >@@ -1220,7 +1220,7 @@ > then stop - it is unsafe */ > if (--depth < 0) > return 1; >- } else if (strncmp(name, "./", 2) == 0) { >+ } else if ((strncmp(name, "./", 2) == 0) || (strncmp(name, "/", 1) == 0)) { > /* nothing */ > } else { > depth++;
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=3965">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 6151
: 3965