rpms / okular

Clone
Source Code
GIT

Blame SOURCES/okular-fix-path-traversal-issue-when-extracting-okular-file.patch

c4 c5 c5-plus c6 c6-plus c7 c7-beta
  1.   765eeff79a37c2d1fe47f12fb758d92180109242
  2.   SOURCES
  3.   okular-fix-path-traversal-issue-when-extracting-okular-file.patch
Blob History Raw
765eef 
diff --git a/core/document.cpp b/core/document.cpp
765eef 
index bc0232a..a2c8b46 100644
765eef 
--- a/core/document.cpp
765eef 
+++ b/core/document.cpp
765eef 
@@ -3826,6 +3826,18 @@ bool Document::openDocumentArchive( const QString & docFile, const KUrl & url )
765eef 
        return false;
765eef
765eef 
     const KArchiveDirectory * mainDir = okularArchive.directory();
765eef 
+
765eef 
+    // Check the archive doesn't have folders, we don't create them when saving the archive
765eef 
+    // and folders mean paths and paths mean path traversal issues
765eef 
+    foreach ( const QString &entry, mainDir->entries() )
765eef 
+    {
765eef 
+        if ( mainDir->entry( entry )->isDirectory() )
765eef 
+        {
765eef 
+            kWarning(OkularDebug) << "Warning: Found a directory inside" << docFile << " - Okular does not create files like that so it is most probably forged.";
765eef 
+            return false;
765eef 
+        }
765eef 
+    }
765eef 
+
765eef 
     const KArchiveEntry * mainEntry = mainDir->entry( "content.xml" );
765eef 
     if ( !mainEntry || !mainEntry->isFile() )
765eef 
         return false;

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation