[gentoo-commits] gentoo-x86 commit in dev-python/cherrypy/files: cherrypy-3.0.2-invalidsession.patch digest-cherrypy-3.0.2-r1 - gentoo-commits

From:	"Ali Polatel (hawking)" <hawking@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in dev-python/cherrypy/files: cherrypy-3.0.2-invalidsession.patch digest-cherrypy-3.0.2-r1
Date:	Tue, 08 Jan 2008 13:59:39
Message-Id:	`E1JCEzQ-0000jO-Ou@stork.gentoo.org`

1

hawking     08/01/08 13:59:36

2

3

  Added:                cherrypy-3.0.2-invalidsession.patch

4

                        digest-cherrypy-3.0.2-r1

5

  Log:

6

  Revision bump. Added patch from upstream for directory traversal via malicious cookie, bug 204829

7

  (Portage version: 2.1.4_rc14)

8

9

Revision  Changes    Path

10

1.1                  dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch

11

12

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&view=markup

13

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&content-type=text/plain

14

15

Index: cherrypy-3.0.2-invalidsession.patch

16

===================================================================

17

http://secunia.com/advisories/28354/

18

http://www.cherrypy.org/ticket/744/

19

https://bugs.gentoo.org/show_bug.cgi?id=204829

20

--- cherrypy/lib/sessions.py	2007-08-06 03:04:44.000000000 +0300

21

+++ cherrypy/lib/sessions.py	2008-01-08 15:29:59.000000000 +0200

22

@@ -260,7 +260,10 @@

23

                     os.path.abspath(self.storage_path)))

24

25

     def _get_file_path(self):

26

-        return os.path.join(self.storage_path, self.SESSION_PREFIX + self.id)

27

+        f = os.path.join(self.storage_path, self.SESSION_PREFIX + self.id)

28

+        if not os.path.normpath(f).startswith(self.storage_path):

29

+            raise cherrypy.HTTPError(400, "Invalid session id in cookie.")

30

+        return f

31

32

     def _load(self, path=None):

33

         if path is None:

1.1                  dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1

38

39

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&view=markup

40

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&content-type=text/plain

41

42

Index: digest-cherrypy-3.0.2-r1

43

===================================================================

44

MD5 d0b10db126a708b763f243ef764ad21a CherryPy-3.0.2.tar.gz 262428

45

RMD160 0bd98ca014b6539cd03969b6b3d85308d296b88e CherryPy-3.0.2.tar.gz 262428

46

SHA256 cd590e57543bf1c590c006bfd7c222adce6ab1584ef35d72dd91558e4e281a1a CherryPy-3.0.2.tar.gz 262428

--

51

gentoo-commits@l.g.o mailing list

1	hawking 08/01/08 13:59:36
2
3	Added: cherrypy-3.0.2-invalidsession.patch
4	digest-cherrypy-3.0.2-r1
5	Log:
6	Revision bump. Added patch from upstream for directory traversal via malicious cookie, bug 204829
7	(Portage version: 2.1.4_rc14)
8
9	Revision Changes Path
10	1.1 dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch
11
12	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&view=markup
13	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/cherrypy-3.0.2-invalidsession.patch?rev=1.1&content-type=text/plain
14
15	Index: cherrypy-3.0.2-invalidsession.patch
16	===================================================================
17	http://secunia.com/advisories/28354/
18	http://www.cherrypy.org/ticket/744/
19	https://bugs.gentoo.org/show_bug.cgi?id=204829
20	--- cherrypy/lib/sessions.py 2007-08-06 03:04:44.000000000 +0300
21	+++ cherrypy/lib/sessions.py 2008-01-08 15:29:59.000000000 +0200
22	@@ -260,7 +260,10 @@
23	os.path.abspath(self.storage_path)))
24
25	def _get_file_path(self):
26	- return os.path.join(self.storage_path, self.SESSION_PREFIX + self.id)
27	+ f = os.path.join(self.storage_path, self.SESSION_PREFIX + self.id)
28	+ if not os.path.normpath(f).startswith(self.storage_path):
29	+ raise cherrypy.HTTPError(400, "Invalid session id in cookie.")
30	+ return f
31
32	def _load(self, path=None):
33	if path is None:
34
35
36
37	1.1 dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1
38
39	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&view=markup
40	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/dev-python/cherrypy/files/digest-cherrypy-3.0.2-r1?rev=1.1&content-type=text/plain
41
42	Index: digest-cherrypy-3.0.2-r1
43	===================================================================
44	MD5 d0b10db126a708b763f243ef764ad21a CherryPy-3.0.2.tar.gz 262428
45	RMD160 0bd98ca014b6539cd03969b6b3d85308d296b88e CherryPy-3.0.2.tar.gz 262428
46	SHA256 cd590e57543bf1c590c006bfd7c222adce6ab1584ef35d72dd91558e4e281a1a CherryPy-3.0.2.tar.gz 262428
47
48
49
50	--
51	gentoo-commits@l.g.o mailing list

Gentoo Archives: gentoo-commits