--- Comment #20 from marcus at jet dot franken dot de 2010-06-09 11:20
---
Jakubs patch looks good to me.
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #19 from jakub at gcc dot gnu dot org 2010-06-09 09:39 ---
Created an attachment (id=20874)
--> (http://gcc.gnu.org/bugzilla/attachment.cgi?id=20874&action=view)
CVE-2010-0831.patch
Just for the record, the patch that went in leaves fastjar still vulnerable.
The main issue
--- Comment #18 from rguenth at gcc dot gnu dot org 2006-08-11 19:46
---
I think this is now fixed.
--
rguenth at gcc dot gnu dot org changed:
What|Removed |Added
--- Comment #17 from doko at gcc dot gnu dot org 2006-08-05 09:43 ---
Subject: Bug 28359
Author: doko
Date: Sat Aug 5 09:43:02 2006
New Revision: 115946
URL: http://gcc.gnu.org/viewcvs?root=gcc&view=rev&rev=115946
Log:
PR fastjar/28359 / CVE-2006-3619
2006-07-17 Rich
--- Comment #16 from doko at gcc dot gnu dot org 2006-08-05 09:27 ---
Subject: Bug 28359
Author: doko
Date: Sat Aug 5 09:27:11 2006
New Revision: 115945
URL: http://gcc.gnu.org/viewcvs?root=gcc&view=rev&rev=115945
Log:
PR fastjar/28359 / CVE-2006-3619
2006-07-17 Rich
--- Comment #15 from rguenth at gcc dot gnu dot org 2006-07-17 14:03
---
Created an attachment (id=11904)
--> (http://gcc.gnu.org/bugzilla/attachment.cgi?id=11904&action=view)
fixed patch
Version of the patch that doesn't count "." parts in the filename as depth.
--
rguenth at gcc
--- Comment #14 from rguenth at gcc dot gnu dot org 2006-07-17 13:57
---
Indeed. Now for symlinks it is only a problem if you can package them like
foo -> ../../
foo/x
i.e., if uncompressing a zip archive can _create_ symlinks. On unix it can,
but it seems to "defer" their creatio
--- Comment #13 from marcus at jet dot franken dot de 2006-07-17 12:25
---
CVE-2006-3619
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #12 from jakub at redhat dot com 2006-07-17 12:21 ---
The patch in #4 is insufficient. Consider paths like ././../.././../etc/passwd
which satisfies the depth tests, yet clearly escapes the current dir tree.
Another question is about symlinks, if there is a foo -> ../../../.
--- Comment #11 from rguenth at gcc dot gnu dot org 2006-07-13 07:40
---
...to assign myself.
--
rguenth at gcc dot gnu dot org changed:
What|Removed |Added
Assi
--- Comment #10 from rguenth at gcc dot gnu dot org 2006-07-13 07:39
---
Reopening then...
--
rguenth at gcc dot gnu dot org changed:
What|Removed |Added
Sta
--- Comment #9 from mmitchel at gcc dot gnu dot org 2006-07-13 05:04
---
There's certainly no reason not to fix this on release branches.
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #8 from marcus at jet dot franken dot de 2006-07-12 18:30
---
yes, this could still be fixed for release branches ;)
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #7 from rguenth at gcc dot gnu dot org 2006-07-12 17:47 ---
Well... maybe the RM has an opinion on this.
--
rguenth at gcc dot gnu dot org changed:
What|Removed |Added
--- Comment #6 from pinskia at gcc dot gnu dot org 2006-07-12 16:57 ---
Fastjar no longer is included with GCC so closing as will not fix.
--
pinskia at gcc dot gnu dot org changed:
What|Removed |Added
--
--- Comment #5 from rguenth at gcc dot gnu dot org 2006-07-12 15:19 ---
I have applied the 2nd fix to the upstream (savannah) fastjar CVS.
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #4 from rguenth at gcc dot gnu dot org 2006-07-12 15:14 ---
Created an attachment (id=11870)
--> (http://gcc.gnu.org/bugzilla/attachment.cgi?id=11870&action=view)
different fix
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
--- Comment #3 from rguenth at gcc dot gnu dot org 2006-07-12 15:08 ---
Confirmed.
--
rguenth at gcc dot gnu dot org changed:
What|Removed |Added
CC|
--- Comment #2 from marcus at jet dot franken dot de 2006-07-12 14:54
---
Created an attachment (id=11869)
--> (http://gcc.gnu.org/bugzilla/attachment.cgi?id=11869&action=view)
fix.patch
i would propose this patch to fix this problem.
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?i
--- Comment #1 from marcus at jet dot franken dot de 2006-07-12 14:50
---
Created an attachment (id=11868)
--> (http://gcc.gnu.org/bugzilla/attachment.cgi?id=11868&action=view)
cups.jar
sample file with ../ paths inside.
--
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=28359
20 matches
Mail list logo