From: | "Ali Polatel (hawking)" <hawking@g.o> |
---|---|
To: | gentoo-commits@l.g.o |
Subject: | [gentoo-commits] gentoo-x86 commit in dev-python/cherrypy/files: cherrypy-3.0.2-invalidsession.patch digest-cherrypy-3.0.2-r1 |
Date: | Tue, 08 Jan 2008 13:59:39 |
Message-Id: | E1JCEzQ-0000jO-Ou@stork.gentoo.org |
1 | hawking 08/01/08 13:59:36 |
2 | |
3 | Added: cherrypy-3.0.2-invalidsession.patch |
4 | digest-cherrypy-3.0.2-r1 |
5 | Log: |
6 | Revision bump. Added patch from upstream for directory traversal via malicious cookie, bug 204829 |
7 | (Portage version: 2.1.4_rc14) |
8 | |
9 | Revision Changes Path |
10 | 1.1 dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch |
11 | |
12 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&view=markup |
13 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&content-type=text/plain |
14 | |
15 | Index: cherrypy-3.0.2-invalidsession.patch |
16 | =================================================================== |
17 | http://secunia.com/advisories/28354/ |
18 | http://www.cherrypy.org/ticket/744/ |
19 | https://bugs.gentoo.org/show_bug.cgi?id=204829 |
20 | --- cherrypy/lib/sessions.py 2007-08-06 03:04:44.000000000 +0300 |
21 | +++ cherrypy/lib/sessions.py 2008-01-08 15:29:59.000000000 +0200 |
22 | @@ -260,7 +260,10 @@ |
23 | os.path.abspath(self.storage_path))) |
24 | |
25 | def _get_file_path(self): |
26 | - return os.path.join(self.storage_path, self.SESSION_PREFIX + self.id) |
27 | + f = os.path.join(self.storage_path, self.SESSION_PREFIX + self.id) |
28 | + if not os.path.normpath(f).startswith(self.storage_path): |
29 | + raise cherrypy.HTTPError(400, "Invalid session id in cookie.") |
30 | + return f |
31 | |
32 | def _load(self, path=None): |
33 | if path is None: |
34 | |
35 | |
36 | |
37 | 1.1 dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1 |
38 | |
39 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&view=markup |
40 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&content-type=text/plain |
41 | |
42 | Index: digest-cherrypy-3.0.2-r1 |
43 | =================================================================== |
44 | MD5 d0b10db126a708b763f243ef764ad21a CherryPy-3.0.2.tar.gz 262428 |
45 | RMD160 0bd98ca014b6539cd03969b6b3d85308d296b88e CherryPy-3.0.2.tar.gz 262428 |
46 | SHA256 cd590e57543bf1c590c006bfd7c222adce6ab1584ef35d72dd91558e4e281a1a CherryPy-3.0.2.tar.gz 262428 |
47 | |
48 | |
49 | |
50 | -- |
51 | gentoo-commits@l.g.o mailing list |