Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 47494 Details for
Bug 73759
kde-base/kdebase Konqueror FTP command injection
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
3.3.2 patch
post-3.3.2-kdelibs-kioslave.patch (text/plain), 663 bytes, created by
Caleb Tennis (RETIRED)
on 2005-01-03 08:47:22 UTC
(
hide
)
Description:
3.3.2 patch
Filename:
MIME Type:
Creator:
Caleb Tennis (RETIRED)
Created:
2005-01-03 08:47:22 UTC
Size:
663 bytes
patch
obsolete
>diff -b -p -u -r1.213.2.1 -r1.213.2.2 >--- kioslave/ftp/ftp.cc 21 Sep 2004 16:17:56 -0000 1.213.2.1 >+++ kioslave/ftp/ftp.cc 26 Dec 2004 00:29:54 -0000 1.213.2.2 >@@ -751,6 +751,14 @@ bool Ftp::ftpSendCmd( const QCString& cm > { > assert(m_control != NULL); // must have control connection socket > >+ if ( cmd.find( '\r' ) != -1 || cmd.find( '\n' ) != -1) >+ { >+ kdWarning(7102) << "Invalid command received (contains CR or LF): " >+ << cmd.data() << endl; >+ error( ERR_UNSUPPORTED_ACTION, m_host ); >+ return false; >+ } >+ > // Don't print out the password... > bool isPassCmd = (cmd.left(4).lower() == "pass"); > if ( !isPassCmd )
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 73759
:
47493
| 47494 |
47495