I would like to submit a patch to address a path traversal
vulnerability in pg_dump's directory format mode (-F d). Currently,
filenames listed in directory-format TOC files (toc.dat and
blobs_*.toc) are treated as trusted when reading an archive during a
restore. If an archive entry filename is maliciously modified to
contain path traversal elements (such as ..) or directory separators,
pg_restore can be tricked into reading files outside the intended
backup directory.  The attached patch fixes this vulnerability.

-- 
Regards,
Dilip Kumar
Google

Attachment: v1-0001-pg_dump-Validate-archive-entry-filenames-in-direc.patch
Description: Binary data

Reply via email to