Open Source
Daily Catch

Before: query += "WHERE T0.PACKET_TIMESECONDS < '#{start_time}' LIMIT -1" result = @@conn.exec(query) After: query += "WHERE T0.PACKET_TIMESECONDS < $1 LIMIT -1" query_params << start_time result = @@conn.exec_params(query, query_params)

--- a/backend/services/real_compiler_service.py +++ b/backend/services/real_compiler_service.py @@ -36,6 +36,68 @@ 'cpu_limit': '1.0' } } - - # Start execution worker + self.blocked_python_modules = { + "os", + "socket", + "subprocess", + "pty", + "multiprocessing", + "ctypes", + "resource", + "pwd", + "grp", + "signal", + "fcntl", + "selectors", + "pathlib", + "shutil", + } + self.blocked_python_calls = { + "eval", + "exec", + "compile", + "__import__", + "open", + "input", + "globals", + "locals", + "vars", + "getattr", + "setattr", + "delattr", + } + self.blocked_python_attrs = { + "fork", + "forkpty", + "spawn", + "spawnl", + "spawnlp", + "spawnv", + "spawnvp", + "system", + "popen", + "execl", + "execle", + "execlp", + "execv", + "execve", + "execvp", + "setsid", + "dup2", + } + self.blocked_patterns = { + "javascript": [ + r"require\s*\(\s*['\"]child_process['\"]\s*\)", + r"require\s*\(\s*['\"]net['\"]\s*\)", + r"require\s*\(\s*['\"]dgram['\"]\s*\)", + r"process\.env", + r"process\.binding", + r"fs\.readFile|fs\.writeFile

--- a/brut.apktool/apktool-lib/src/main/java/brut/androlib/res/decoder/ResFileDecoder.java +++ b/brut.apktool/apktool-lib/src/main/java/brut/androlib/res/decoder/ResFileDecoder.java @@ -100,13 +100,8 @@ public void decode(ResEntry entry, Directory inDir, Directory outDir, Map<String } // Generate output file path from entry. - String outResPath = entry.getTypeName() + entry.getConfig().getQualifiers() + "/" + entry.getName(); - if (BrutIO.detectPossibleDirectoryTraversal(outResPath)) { - LOGGER.warning("Potentially malicious file path: " + outResPath + ", using instead: " + inResPath); - outResPath = inResPath; - } else if (!ext.isEmpty()) { - outResPath += "." + ext; - } + String outResPath = entry.getTypeName() + entry.getConfig().getQualifiers() + "/" + entry.getName() + + (ext.isEmpty() ? "" : "." + ext); // Map output path to original path if it's different. String outFileName = "res/" + outResPath;

- const content = await (isRemotePath(href) ? fetch(imageSrc) : assets.fetch(imageSrc)); + const content = await (isRemotePath(href) + ? fetch(imageSrc, { redirect: 'manual' }) + : assets.fetch(imageSrc)); + + if (content.status >= 300 && content.status < 400) { + return new Response('Not Found', { status: 404 }); + }

--- a/lib/openvpn-auth-oauth2/openvpn/handle.go +++ b/lib/openvpn-auth-oauth2/openvpn/handle.go @@ -144,7 +144,7 @@ func (p *PluginHandle) handleAuthUserPassVerify(clientEnvList **c.Char, perClien slog.Any("err", err), ) - return c.OpenVPNPluginFuncSuccess + return c.OpenVPNPluginFuncError case management.ClientAuthPending: pendingRespCh, err := p.managementClient.RegisterPendingPoller(currentClientID)

--- a/primitives/block/src/multisig.rs +++ b/primitives/block/src/multisig.rs @@ -37,3 +37,14 @@ impl MultiSignature { } } } + +pub(crate) fn checked_signer_slots(signers: &BitSet) -> Option<Vec<u16>> { + let mut slots = Vec::with_capacity(signers.len()); + for slot in signers.iter() { + if slot >= Policy::SLOTS as usize || slot > u16::MAX as usize { + return None; + } + slots.push(slot

--- a/lib/index.js +++ b/lib/index.js @@ -69,7 +69,7 @@ export function handle (i18next, options = {}) { } if (lng && options.getHeader(res, 'Content-Language') !== lng) { - options.setHeader(res, 'Content-Language', utils.escape(lng)) + options.setHeader(res, 'Content-Language', utils.sanitizeHeaderValue(lng)) } req.languages = i18next.services.languageUtils.toResolveHierarchy(lng)

- def self.verify_no_service(token, no_password: true) + def self.verify_no_service(token, mode: :token) ... - unless no_password - return true if @@pw_hash_cache and (time - @@pw_hash_cache_time) < PW_HASH_CACHE_TIMEOUT and Argon2::Password.verify_password(token, @@pw_hash_cache) + unless mode == :password + return true if @@session_cache and (time - @@session_cache_time) < SESSION_CACHE_TIMEOUT and @@session_cache[token]

--- a/packages/plugins/@nocobase/plugin-field-sort/src/server/sort-field.ts +++ b/packages/plugins/@nocobase/plugin-field-sort/src/server/sort-field.ts @@ -120,21 +120,29 @@ export class SortField extends Field { const sortColumnName = queryInterface.quoteIdentifier(this.collection.model.rawAttributes[this.name].field); let sql: string; + let bind: any[] | undefined; const whereClause = scopeKey && scopeValue ? (() => { const filteredScopeValue = scopeValue.filter((v) => v !== null); - if (filteredScopeValue.length === 0) { - return ''; + const clauses: string[] = []; + + if (filteredScopeValue.length > 0) { + bind = filteredScopeValue; + const placeholders = filteredScopeValue.map((_, index) => `$${index + 1}`).join(', '); + clauses.push(`${queryInterface.quoteIdentifier(scopeKey)} IN (${placeholders})`); } - const initialClause = ` - WHERE ${queryInterface.quoteIdentifier(scopeKey)} IN (${filteredScopeValue.map((v) => `'${v}'`).join(', ')})`; + + if (scopeValue.includes(null)) { + clauses.push(`${queryInterface.quoteIdentifier(scopeKey)} IS NULL`); + } + + if (clauses.length === 0) { + return ''; + } + return ` + WHERE ${clauses.join(' OR ')}`; })() : ''; @@ -180,6 +188,7 @@ export class SortField extends Field { `; } await this.collection.db.sequelize.query(sql, { + bind, transaction, }); };

--- a/primitives/block/src/macro_block.rs +++ b/primitives/block/src/macro_block.rs @@ -244,6 +244,12 @@ impl MacroHeader { if self.is_election() != self.validators.is_some() { return Err(BlockError::InvalidValidators); } + // Validate that all BLS voting keys can be decompressed and structural invariants hold. + if let Some(ref validators) = self.validators { + validators + .validate_keys() + .map_err(|_| BlockError::InvalidValidators)?; + } Ok(()) }

--- a/src/api/postMessage.js +++ b/src/api/postMessage.js @@ -146,8 +146,24 @@ export const api = { } } +// Compute the expected origin once at module load. +const getExpectedIframeOrigin = () => { + try { + return new URL(getIframeUrl()).origin + } catch (err) { + return null + } +} + if (typeof window !== 'undefined') { window.addEventListener('message', e => { + const expectedOrigin = getExpectedIframeOrigin() + if (!expectedOrigin || e.origin !== expectedOrigin) return + const { sender, /* senderAPIVersion, */ action, message, payload } = e.data // console.warn(sender, action, message, payload) ``` ```diff --- a/src/api/handleEditKey.js +++ b/src/api/handleEditKey.js @@ -16,6 +74,9 @@ export function setValueOnNode (meta, value) { item.node.textContent = txtWithHiddenMeta } else if (meta.textType.indexOf('attr:') === 0) { const attr = meta.textType.replace('attr:', '') + // Drop writes to dangerous attribute names (event handlers, style) and + // reject javascript:/data:/vbscript:/file: URLs on href/src/action/etc. + if (!isSafeAttributeWrite(attr, txtWithHiddenMeta)) return item.node.setAttribute(attr, txtWithHiddenMeta) } else if (meta.textType === 'html') { const id = `${meta.textType}-${meta.children}` @@ -29,9 +90,11 @@ export function setValueOnNode (meta, value) { item.originalChildNodes = clones } + const sanitisedHtml = sanitizeTranslationHtml(txtWithHiddenMeta) + // simple case - contains all inner HTML - so just replace it if (item.children[id].length === item.node.childNodes.length) { - item.node.innerHTML = txtWithHiddenMeta + item.node.innerHTML = sanitisedHtml } else { // more complex...add somewhere in between const children = item.children[id] @@ -40,7 +103,7 @@ export function setValueOnNode (meta, value) { // append to dummy const dummy = document.createElement('div') - dummy.innerHTML = txtWithHiddenMeta + dummy.innerHTML = sanitisedHtml // loop over all childs and append them to source node before first child (the one having the startMarker) const nodes = []

--- a/packages/plugins/@nocobase/plugin-collection-sql/src/server/resources/sql.ts +++ b/packages/plugins/@nocobase/plugin-collection-sql/src/server/resources/sql.ts @@ -103,6 +103,14 @@ export default { await next(); }, update: async (ctx: Context, next: Next) => { + const { sql } = ctx.action.params.values || {}; + if (sql) { + try { + checkSQL(sql); + } catch (e) { + ctx.throw(400, ctx.t(e.message)); + } + } const transaction = await ctx.app.db.sequelize.transaction(); try { const { upRes } = await updateCollection(ctx, transaction);

- if (isset($event->settings['custom_less']) && preg_match('/@import|data-uri\s*\(/i', $event->settings['custom_less'])) { - throw new ValidationException([ - 'custom_less' => $translator->trans('core.admin.appearance.custom_styles_cannot_use_less_features') - ]); + foreach ($lessFeatureKeys as $key) { + if (is_string($event->settings[$key]) && preg_match('/@import|data-uri\s*\(/i', $event->settings[$key])) { + throw new ValidationException([ + $key => $translator->trans('core.admin.appearance.custom_styles_cannot_use_less_features') + ]); + }

--- a/openc3/python/openc3/models/tool_config_model.py +++ b/openc3/python/openc3/models/tool_config_model.py @@ -9,12 +9,15 @@ # This file may also be used under the terms of a commercial license # if purchased from OpenC3, Inc. +import re from typing import Any from openc3.environment import OPENC3_SCOPE from openc3.utilities.local_mode import LocalMode from openc3.utilities.store import Store +PATH_TRAVERSAL_PATTERN = re.compile(r"[/\]|\.\.") + class ToolConfigModel: @classmethod @@ -26,11 +29,17 @@ def config_tool_names(cls, scope: str = OPENC3_SCOPE): @classmethod def list_configs(cls, tool: str, scope: str = OPENC3_SCOPE): + if PATH_TRAVERSAL_PATTERN.search(tool): + raise RuntimeError(f"Invalid tool name: {tool}") keys = Store.hkeys(f"{scope}__config__{tool}") return [key.decode() for key in keys] @classmethod def load_config(cls, tool: str, name: str, scope: str = OPENC3_SCOPE): + if PATH_TRAVERSAL_PATTERN.search(tool): + raise RuntimeError(f"Invalid tool name: {tool}") + if PATH_TRAVERSAL_PATTERN.search(name): + raise RuntimeError(f"Invalid config name: {name}") return Store.hget(f"{scope}__config__{tool}", name).decode()

--- a/server/datasources/lunch_flow/client.go +++ b/server/datasources/lunch_flow/client.go @@ -64,7 +69,22 @@ func NewLunchFlowClient( log *slog.Logger, apiUrl string, accessToken string, + configuration config.LunchFlow, ) (LunchFlowClient, error) { + if !configuration.Enabled { + log.Error("lunch flow is not enabled on this server but the client is being instantiated!", + "bug", true, + ) + return nil, errors.New("Lunch Flow is not enabled on this server") + } + + if !configuration.IsAllowedApiUrl(apiUrl) { + log.Warn("rejected Lunch Flow API URL that is not in the configured allowlist, please update your configuration if this url is valid!", + "apiUrl", apiUrl, + ) + return nil, errors.New("Lunch Flow API URL is not in the configured allowlist") + } parsedUrl, err := url.Parse(apiUrl) if err != nil { return nil, errors.WithStack(err)

--- a/openssl/src/aes.rs +++ b/openssl/src/aes.rs @@ -243,7 +243,7 @@ pub fn unwrap_key( in_: &[u8], ) -> Result<usize, KeyError> { unsafe { - assert!(out.len() + 8 <= in_.len()); + assert!(out.len() + 8 >= in_.len());

--- a/lib/dom.js +++ b/lib/dom.js @@ -3067,6 +3108,17 @@ function serializeToString(node, buf, visibleNamespaces, opts) { case DOCUMENT_TYPE_NODE: var pubid = node.publicId; var sysid = node.systemId; + if (requireWellFormed) { + if (pubid && !g.PubidLiteral_match.test(pubid)) { + throw new DOMException('The DocumentType publicId is not a valid PubidLiteral', 'InvalidStateError'); + } + if (sysid && sysid !== '.' && !g.SystemLiteral_match.test(sysid)) { + throw new DOMException('The DocumentType systemId is not a valid SystemLiteral', 'InvalidStateError'); + } + if (node.internalSubset && node.internalSubset.indexOf(']>') !== -1) { + throw new DOMException('The DocumentType internalSubset contains "]>"', 'InvalidStateError'); + } + } buf.push(g.DOCTYPE_DECL_START, ' ', node.name); if (pubid) { buf.push(' ', g.PUBLIC, ' ', pubid);

--- a/openssl/src/md_ctx.rs +++ b/openssl/src/md_ctx.rs @@ -242,6 +242,10 @@ impl MdCtxRef { pub fn digest_final(&mut self, out: &mut [u8]) -> Result<usize, ErrorStack> { let mut len = u32::try_from(out.len()).unwrap_or(u32::MAX); + if self.size() > len as usize { + return Err(ErrorStack::get()); + } + unsafe { cvt(ffi::EVP_DigestFinal( self.as_ptr(),

--- a/kernel/server/serve.go +++ b/kernel/server/serve.go @@ -319,6 +319,11 @@ func serveExport(ginServer *gin.Engine) { } fullPath := filepath.Join(exportBaseDir, decodedPath) + if !gulu.File.IsSubPath(exportBaseDir, fullPath) { + c.Status(http.StatusUnauthorized) + return + } + if util.IsSensitivePath(fullPath) { logging.LogErrorf("refuse to export sensitive file [%s]", c.Request.URL.Path) c.Status(http.StatusForbidden)

--- a/openssl/src/ssl/callbacks.rs +++ b/openssl/src/ssl/callbacks.rs @@ -84,8 +84,10 @@ where let identity_sl = util::from_raw_parts_mut(identity as *mut u8, max_identity_len as usize); #[allow(clippy::unnecessary_cast)] let psk_sl = util::from_raw_parts_mut(psk as *mut u8, max_psk_len as usize); + let psk_cap = psk_sl.len(); match (*callback)(ssl, hint, identity_sl, psk_sl) { - Ok(psk_len) => psk_len as u32, + Ok(psk_len) if psk_len <= psk_cap => psk_len as u32, + Ok(_) => 0, Err(e) => { e.put(); 0

--- a/internal/sanitize/sanitize.go +++ b/internal/sanitize/sanitize.go @@ -237,6 +239,15 @@ func rawState(l *sqlLexer) stateFn { l.start = l.pos return placeholderState } + if tagLen, ok := scanDollarQuoteTag(l.src[l.pos:]); ok { + l.dollarTag = l.src[l.pos : l.pos+tagLen] + l.pos += tagLen + 1 + return dollarQuoteState + } case '-': nextRune, width := utf8.DecodeRuneInString(l.src[l.pos:]) if nextRune == '-' {

- const finalExtractDir = path.join(path.dirname(mcpbFilePath), `server-${manifest.name}`); - cleanupOldMcpbServer(manifest.name); + const safeServerName = validateMcpbServerName(manifest.name); + const finalExtractDir = resolveMcpbServerExtractDir(path.dirname(mcpbFilePath), safeServerName); + cleanupOldMcpbServer(safeServerName);

--- a/openssl/src/pkey_ctx.rs +++ b/openssl/src/pkey_ctx.rs @@ -820,7 +820,57 @@ impl<T> PkeyCtxRef<T> { /// /// If `buf` is set to `None`, an upper bound on the number of bytes required for the buffer will be returned. #[corresponds(EVP_PKEY_derive)] - pub fn derive(&mut self, buf: Option<&mut [u8]>) -> Result<usize, ErrorStack> { + #[allow(unused_mut)] + pub fn derive(&mut self, mut buf: Option<&mut [u8]>) -> Result<usize, ErrorStack> { + #[cfg(any(all(ossl110, not(ossl300)), libressl))] + { + if let Some(b) = buf.as_deref_mut() { + let mut required = 0; + let probe_ok = unsafe { + ffi::EVP_PKEY_derive(self.as_ptr(), ptr::null_mut(), &mut required) == 1 + }; + if !probe_ok { + let _ = ErrorStack::get(); + } else if required != usize::MAX && b.len() < required { + let mut temp = vec![0u8; required]; + let mut len = required; + unsafe { + cvt(ffi::EVP_PKEY_derive( + self.as_ptr(), + temp.as_mut_ptr(), + &mut len, + ))?; + } + let copy_len = b.len().min(len); + b[..copy_len].copy_from_slice(&temp[..copy_len]); + return Ok(copy_len); + } + } + } let mut len = buf.as_ref().map_or(0, |b| b.len()); unsafe { cvt(ffi::EVP_PKEY_derive(

--- a/lib/dom.js +++ b/lib/dom.js @@ -3062,6 +3082,20 @@ function serializeToString(node, buf, visibleNamespaces, opts) { buf.push('>'); return; case PROCESSING_INSTRUCTION_NODE: + if (requireWellFormed) { + if (node.target.indexOf(':') !== -1 || node.target.toLowerCase() === 'xml') { + throw new DOMException('The ProcessingInstruction target is not well-formed', 'InvalidStateError'); + } + if (g.InvalidChar.test(node.data)) { + throw new DOMException( + 'The ProcessingInstruction data contains characters outside the XML Char production', + 'InvalidStateError' + ); + } + if (node.data.indexOf('?>') !== -1) { + throw new DOMException('The ProcessingInstruction data contains "?>"', 'InvalidStateError'); + } + } return buf.push('<?', node.target, ' ', node.data, '?>'); case ENTITY_REFERENCE_NODE: return buf.push('&', node.nodeName, ';');

--- a/openssl/src/util.rs +++ b/openssl/src/util.rs @@ -55,6 +55,7 @@ where })); match result { + Ok(Ok(len)) if len > size as usize => 0, Ok(Ok(len)) => len as c_int, Ok(Err(_)) => { // FIXME restore error stack

- data := session.Profile() - if err := utils.HttpJsonRequest(w, r, &data); err != nil { - return err + profile := session.Profile() + if !profile.IsAdmin { + // Name is the only updatable field in the profile for non-admins + var payload types.MemberProfile + if err := utils.HttpJsonRequest(w, r, &payload); err != nil { + return err + } + profile.Name = payload.Name + } else { + if err := utils.HttpJsonRequest(w, r, &profile); err != nil { + return err + } } - err := api.sessions.Update(session.ID(), data) + err := api.sessions.Update(session.ID(), profile)

--- a/src/tools/BashTool/bashPermissions.ts +++ b/src/tools/BashTool/bashPermissions.ts @@ -1814,7 +1814,10 @@ export async function bashToolHasPermission( input, appState.toolPermissionContext, ) - if (sandboxAutoAllowResult.behavior !== 'passthrough') { + if ( + sandboxAutoAllowResult.behavior === 'deny' || + sandboxAutoAllowResult.behavior === 'ask' + ) { return sandboxAutoAllowResult } }

--- a/src/interfaces/ws.ts +++ b/src/interfaces/ws.ts @@ -725,6 +740,20 @@ function wsInterface(app: WsApp, spark: Spark, msg: WsMessage): void { } function processLoginRequest(app: WsApp, spark: Spark, msg: WsMessage): void { + const rateLimiter = app.securityStrategy.loginRateLimiter + if (rateLimiter) { + const { allowed } = rateLimiter.check(getClientIp(app, spark)) + if (!allowed) { + spark.write({ + requestId: msg.requestId, + state: 'COMPLETED', + statusCode: 429, + message: LOGIN_RATE_LIMIT_MESSAGE + }) + return + } + } + app.securityStrategy .login(msg.login!.username, msg.login!.password)

--- a/pkg/reconciler/pipelinerun/pipelinerun.go +++ b/pkg/reconciler/pipelinerun/pipelinerun.go @@ -367,6 +367,13 @@ func (c *Reconciler) resolvePipelineState( ) (resources.PipelineRunState, error) { ctx, span := c.tracerProvider.Tracer(TracerName).Start(ctx, "resolvePipelineState") defer span.End(); + + // List VerificationPolicies once per reconcile for trusted resources (used by all pipeline tasks). + vp, err := c.verificationPolicyLister.VerificationPolicies(pr.Namespace).List(labels.Everything()) + if err != nil { + return nil, fmt.Errorf("failed to list VerificationPolicies from namespace %s with error %w", pr.Namespace, err) + } + // Resolve each pipeline task individually because they each could have a different reference context (remote or local). for _, pipelineTask := range pipelineTasks { // We need the TaskRun name to ensure that we don't perform an additional remote resolution request for a PipelineTask @@ -377,12 +384,6 @@ func (c *Reconciler) resolvePipelineState( pr.Name, ) - // list VerificationPolicies for trusted resources - vp, err := c.verificationPolicyLister.VerificationPolicies(pr.Namespace).List(labels.Everything()) - if err != nil { - return nil, fmt.Errorf("failed to list VerificationPolicies from namespace %s with error %w", pr.Namespace, err) - } - getChildPipelineRunFunc := func(name string) (*v1.PipelineRun, error) { return c.pipelineRunLister.PipelineRuns(pr.Namespace).Get(name) }

--- a/glances/exports/glances_cassandra/__init__.py +++ b/glances/exports/glances_cassandra/__init__.py @@ -47,6 +61,17 @@ def __init__(self, config=None, args=None): if not self.export_enable: sys.exit(2) + # Validate CQL identifiers to prevent injection via config values + try: + self.keyspace = _validate_cql_identifier(self.keyspace, 'keyspace') + self.table = _validate_cql_identifier(self.table, 'table') + self.replication_factor = int(self.replication_factor) + if self.replication_factor < 1: + raise ValueError("replication_factor must be a positive integer") + except ValueError as e: + logger.critical(f"Cassandra configuration error: {e}") + sys.exit(2)

--- a/src/server/auth-client.ts +++ b/src/server/auth-client.ts - private proxyFetchers: { [audience: string]: Fetcher<Response> } = {}; + private proxyDpopHandles: { [audience: string]: oauth.DPoPHandle } = {}; --- a/src/server/auth-client.ts +++ b/src/server/auth-client.ts - let fetcher: Fetcher<Response>; - if (this.provider) { - fetcher = await this.provider.getProxyFetcher(cacheKey, async () => { - return this.fetcherFactory({ - useDPoP: this.useDPoP, - fetch: this.fetch, - getAccessToken: getAccessToken - }); - }); - } else { - // Static mode or no provider: use local cache - fetcher = this.proxyFetchers[options.audience]; - if (!fetcher) { - fetcher = await this.fetcherFactory({ - useDPoP: this.useDPoP, - fetch: this.fetch, - getAccessToken: getAccessToken - }); - this.proxyFetchers[options.audience] = fetcher; - } - } + const dpopHandle = + this.useDPoP && this.dpopKeyPair + ? (this.proxyDpopHandles[options.audience] ??= oauth.DPoP( + this.clientMetadata, + this.dpopKeyPair + )) + : undefined; - // Override getAccessToken for the current request - // @ts-expect-error Override fetcher's getAccessToken to capture token set side effects - fetcher.getAccessToken = getAccessToken; + const fetcher = await this.fetcherFactory({ + useDPoP: this.useDPoP, + fetch: this.fetch, + getAccessToken, + dpopHandle + });

--- a/plugins/database/postgresql/postgresql.go +++ b/plugins/database/postgresql/postgresql.go @@ -445,7 +445,7 @@ func (p *PostgreSQL) defaultDeleteUser(ctx context.Context, username string) err } revocationStmts = append(revocationStmts, fmt.Sprintf( `REVOKE ALL PRIVILEGES ON ALL TABLES IN SCHEMA %s FROM %s;`, - (schema), + dbutil.QuoteIdentifier(schema), dbutil.QuoteIdentifier(username)))

--- a/builtin/credential/cert/path_login.go +++ b/builtin/credential/cert/path_login.go @@ -162,6 +165,7 @@ func (b *backend) pathLogin(ctx context.Context, req *logical.Request, data *fra auth := &logical.Auth{ InternalData: map[string]interface{}{ + "certificate": cert, "subject_key_id": skid, "authority_key_id": akid, }, @@ -238,10 +242,14 @@ func (b *backend) pathLoginRenew(ctx context.Context, req *logical.Request, d *f clientCerts := req.Connection.ConnState.PeerCertificates if len(clientCerts) == 0 { return logical.ErrorResponse("no client certificate found"), nil } - skid := base64.StdEncoding.EncodeToString(clientCerts[0].SubjectKeyId) - akid := base64.StdEncoding.EncodeToString(clientCerts[0].AuthorityKeyId) - // Certificate should not only match a registered certificate policy. - // Also, the identity of the certificate presented should match the identity of the certificate used during login - if req.Auth.InternalData["subject_key_id"] != skid && req.Auth.InternalData["authority_key_id"] != akid { - return nil, errors.New("client identity during renewal not matching client identity used during login") + // We want to ensure the original request certificate and this + // certificate match. A renewed certificate does not match and thus + // will be rejected. + originalCertRaw, err := base64.StdEncoding.DecodeString(certBase64.(string)) + if err != nil { + return nil, fmt.Errorf("failed to base64-decode original certificate: %w", err) + } + + if subtle.ConstantTimeCompare(originalCertRaw, clientCerts[0].Raw) == 0 { + return nil, fmt.Errorf("client identity during renewal not matching client identity used during login:\n\toriginal: %v\n\trenewal: %v", originalCertRaw, matched.Certificates[0].Raw) } }

--- a/glances/plugins/ip/__init__.py +++ b/glances/plugins/ip/__init__.py @@ -71,6 +73,17 @@ def __init__(self, args=None, config=None): or self.public_api is None or self.public_field is None ) + + # Defence-in-depth: validate URL scheme to prevent SSRF via config + if not self.public_disabled and self.public_api: + parsed = urlparse(self.public_api) + if parsed.scheme not in ('http', 'https'): + logger.warning( + f"IP plugin - public_api uses forbidden scheme '{parsed.scheme}://', " + "only http:// and https:// are allowed. Public IP disabled." + ) + self.public_disabled = True + self.public_address_refresh_interval = self.get_conf_value( "public_refresh_interval", default=self._default_public_refresh_interval ) @@ -258,7 +271,10 @@ def run(self): def _fetch_public_ip_info(self): """Fetch public IP information from the configured API.""" try: - response = urlopen_auth(self.url, self.username, self.password, self.timeout).read() + if self.username and self.password: + response = urlopen_auth(self.url, self.username, self.password, self.timeout).read() + else: + response = urlopen(Request(self.url), timeout=self.timeout).read() return json_loads(response) except Exception as e: logger.debug(f"IP plugin - Cannot get public IP information from {self.url} ({e})")

--- a/glances/outputs/glances_restful_api.py +++ b/glances/outputs/glances_restful_api.py @@ -559,11 +559,25 @@ def _router(self) -> APIRouter: print(self._logo()) # Security warnings - if not self.args.password: - is_localhost = self.args.bind_address in ('127.00.1', 'localhost', '::1') + cors_origins = self.config.get_list_value('outputs', 'cors_origins', default=["*"]) + if not self.args.password and cors_origins == ["*"]: warn_lines = [ - "WARNING: Glances web server is running WITHOUT authentication.", + "WARNING: Glances web server is running without authentication and with permissive", + " CORS (Access-Control-Allow-Origin: *). Any web page reachable from your", + " browser can read system metrics. Consider binding to 127.0.0.1, enabling", + " authentication, or setting cors_origins in glances.conf.", + " See https://glances.readthedocs.io/en/latest/api/restful.html#security", ] + print('\n'.join(warn_lines) + '\n') + logger.warning( + "Glances web server is running without authentication and with permissive CORS " + "(Access-Control-Allow-Origin: *)" + ) + elif not self.args.password: + warn_lines = [ + "WARNING: Glances web server is running without authentication.", + ] is_localhost = self.args.bind_address in ('127.0.0.1', 'localhost', '::1') if is_localhost: warn_lines.append(" Use --password to enable authentication.")

--- a/api/user/user.go +++ b/api/user/user.go @@ -43,9 +43,15 @@ func InitManageUserRouter(g *gin.RouterGroup) { c.BeforeDecodeHook(encryptPassword) c.ExecutedHook(func(ctx *cosy.Ctx[model.User]) { - if ctx.Payload["password"] != "" { - a := query.AuthToken - _, _ = a.Where(a.UserID.Eq(ctx.ID)).Delete() + user.InvalidateUserCache(ctx.ID) + + if ctx.Payload["password"] != nil { + user.DeleteUserTokens(ctx.ID) + return + } + + if status, ok := ctx.Payload["status"]; ok && !cast.ToBool(status) { + user.DeleteUserTokens(ctx.ID) } }) })

Before: - ipAddr := volContext[MountTargetIp] - mountOptions = append(mountOptions, MountTargetIp + "=" + ipAddr) After: + if net.ParseIP(v) == nil { + return nil, status.Error(codes.InvalidArgument, fmt.Sprintf("Volume context property %q=%q is not a valid IP address", k, v)) + } + mountOptions = append(mountOptions, MountTargetIp + "=" + v)

Before: return SubPath / safePath; After: var delegatePath = SubPath / safePath; if (delegatePath != SubPath && !delegatePath.IsInDirectory(SubPath, true)) { throw new UnauthorizedAccessException($

Before: profile.EmailVerified After: profile.EmailVerified.IsVerified()

Before: cmd = parts[0] After: basename = os.path.basename(cmd) if basename not in ALLOWED_MCP_COMMANDS: raise ValueError(...)

Before: - _, _ = w.Write(util.EscapeHTML(util.URLEscape(url, false))) After: + if r.Unsafe || !IsDangerousURL(url) { + _, _ = w.Write(util.EscapeHTML(url)) + }

Before: - const response = await fetch(url, { - signal: controller.signal, - headers: { - Range: "bytes=0-65535", - "User-Agent": "QQBot-Image-Size-Detector/1.0", - }, - }); After: + const response = await fetchRemoteMedia(url, { + signal: controller.signal, + headers: { + Range: "bytes=0-65535", + "User-Agent": "QQBot-Image-Size-Detector/1.0", + }, + policy: IMAGE_PROBE_SSRF_POLICY, + });

Added: const OPAQUE_MUTABLE_SCRIPT_RUNNERS = new Set(["busybox", "toybox"]); Modified: function unwrapArgvForMutableOperand(argv: string[]): { argv: string[]; baseIndex: number; opaqueMultiplexerSeen: boolean; }

Before: const storeAllowFrom = await readStoreAllowFrom(); After: const storeAllowFrom = isDirectMessage ? await readStoreAllowFrom() : [];

Before: if (approvers.length === 0) { return { authorized: true } as const; } After: if (approvers.length === 0) { // Empty approver sets are implicit same-chat fallback, not explicit approver bypass. return markImplicitSameChatAppro }

Before: // Derive effective CDP source range: explicit config > Docker network gateway > fail-closed. let effectiveCdpSourceRange = cdpSourceRange; After: // Derive effective CDP source range: explicit config > Docker network gateway > fail-closed. let effectiveCdpSourceRange = cdpSourceRange; if (!effectiveCdpSourceRange) { const driver = await readDockerNetworkDriver(browserDockerCfg.network); const isBridgeLike = !driver || driver === "bridge"; if (isBridgeLike) { const gateway = await readDockerNetworkGateway(browserDockerCfg.network); if (gateway && !gateway.includes(":")) { effectiveCdpSourceRange = `${gateway}/32`; } } } if (!effectiveCdpSourceRange && browserDockerCfg.network.trim().toLowerCase() === "none") { effectiveCdpSourceRange = "127.0.0.1/32";

Added the following code to enforce SSRF policy: ```typescript const EXISTING_SESSION_INTERACTION_NAVIGATION_RECHECK_DELAYS_MS = [0, 250, 500] as const; async function assertExistingSessionPostInteractionNavigationAllowed(params: { profileName: string; userDataDir?: string; targetId: string; ssrfPolicy?: BrowserNavigationPolicyOptions["ssrfPolicy"]; }): Promise<void> { const ssrfPolicyOpts = withBrowserNavigationPolicy(params.ssrfPo

Added function: ```typescript async function assertPostInteractionNavigationSafe(opts: { cdpUrl: string; page: Awaited<ReturnType<typeof getPageForTargetId>>; ssrfPolicy?: SsrFPolicy; targetId?: string; }): Promise<void> { ... } ``` Modified `clickViaPlaywright` to include `ssrfPolicy`: ```typescript export async function clickViaPlaywright(opts: { cdpUrl: string; targetId?: string; modifiers?: Array<'Alt' | 'Control' | 'ControlOrMeta' | 'Meta' | 'Shift'>; delayMs?: number; timeoutMs?: number; ssrfPolicy?: SsrFPolicy; }): Promise<void> { ... }

Before: if (firstToken === "on" || firstToken === "off") { } After: if (requiresAdminToMutateDreaming(ctx.gatewayClientScopes)) { return { text: "⚠️ /dreaming on|off requires operator.admin for gateway clients." }; }

Before: - const resolvedCandidate = path.resolve(normalizedPath After: + function resolveQQBotPayloadLocalFilePath(normalizedPath: string): string | null { + const mediaDir = getQQBotDataDir(); + if (!isPathWithinRoot(normalizedPath, mediaDir)) { + return null; + } + return path.resolve(mediaDir, normalizedPath); }

Before: - name: value.name, After: + name: safeName,

Added blocked keys: + "BROWSER_EXECUTABLE_PATH", + "CLAWHUB_AUTH_TOKEN", + "CLAWHUB_CONFIG_PATH", + "CLAWHUB_TOKEN", + "CLAWHUB_URL", + "OPENAI_API_KEY", + "OPENAI_API_KEYS", + "OPENCLAW_ALLOW_INSECURE_PRIVATE_WS", + "OPENCLAW_ALLOW_PROJECT_LOCAL_BIN", + "OPENCLAW_BROWSER_EXECUTABLE_PATH", + "OPENCLAW_CACHE_TRACE", + "OPENCLAW_CACHE_TRACE_FILE", + "OPENCLAW_CACHE_TRACE_MESSAGES", + "OPENCLAW_CACHE_TRACE_PROMPT", + "OPENCLAW_CACHE_TRACE_SYSTEM", + "OPENCLAW_GATEWAY_PORT", + "OPENCLAW_GATEWAY_URL", + "OPENCLAW_MPM_CATALOG_PATHS", + "OPENCLAW_NODE_EXEC_FALLBACK", + "OPENCLAW_NODE_EXEC_HOST", + "OPENCLAW_PLUGIN_CATALOG_PATHS", + "OPENCLAW_RAW_STREAM", + "OPENCLAW_RAW_STREAM_PATH", + "OPENCLAW_SHOW_SECRETS", + "OPENCLAW_TEST_TAILSCALE_BINARY", + "PLAYWRIGHT_CHROMIUM_EXECUTABLE_PATH", Added blocked suffixes: +const BLOCKED_WORKSPACE_DOTENV_SUFFIXES = ["_BASE_URL"];

+function resolveEffectiveTrustConfig(cfg: OpenClawConfig, env?: NodeJS.ProcessEnv): OpenClawConfig { + return applyPluginAutoEnable({ + config: cfg, + env: env ?? process.env, + }).config; +} + +function isTrustedWorkspaceChannelCatalogEntry( + entry: ChannelPluginCatalogEntry | undefined, + cfg: OpenClawConfig, + env?: NodeJS.ProcessEnv, +): boolean { + if (entry?.origin !== "workspace") { + return true; + } + if (!entry.pluginId) { + return false; + } + const effectiveConfig = resolveEffectiveTrustConfig(cfg, env); + return resolveEnableState( + entry.pluginId, + "workspace", + normalizePluginsConfig(effectiveConfig.plugins), + ).enabled; +} + +export function getTrustedChannelPluginCatalogEntry( + channelId: string, + params: { + cfg: OpenClawConfig; + workspaceDir?: string; + env?: NodeJS.ProcessEnv; + }, +): ChannelPluginCatalogEntry | undefined { + const candidate = getChannelPluginCatalogEntry(channelId, { + workspaceDir: params.workspaceDir, + }); + if (isTrustedWorkspaceChannelCatalogEntry(candidate, params.cfg, params.env)) { + return candidate; + } + return getChannelPluginCatalogEntry(channelId, { + workspaceDir: params.workspaceDir, + excludeWorkspace: true, + }); +} + +export function listTrustedChannelPluginCatal

Before: - config: {}, + sourceConfig: redactedResolved, + runtimeConfig: redactedConfig, + config: redactedConfig, After: + sourceConfig: redactedResolved, + runtimeConfig: redactedConfig,

Before: - res.setHeader("Cache-Control", "no-store, no-cache, must-revalidate, proxy-revalidate"); - res.setHeader("Pragma", "no-cache"); - res.setHeader("Expires", "0"); After: + if (!hasVerifiedBrowserAuth(req)) { + res.status(401).send("Unauthorized"); + return; + } + res.setHeader("Cache-Control", "no-store, no-cache, must-revalidate, proxy-revalidate"); + res.setHeader("Pragma", "no-cache"); + res.setHeader("Expires", "0");

Added: import { resolveManifestProviderAuthChoice } from "../../../plugins/provider-auth-choices.js"; Changed: - const loadAuthChoicePluginProvidersRuntime = createLazyRuntimeSurface( + const loadAuthChoicePluginProvidersRuntime = createLazyRuntimeSurface(( ({ authChoicePluginProvidersRuntime }) => authChoicePluginProvidersRuntime, );

Before: - private String parseDN(String subject, String dNAttributeName) After: + import org.bouncycastle.ldap.LDAPUtils; + // ... + private String parseDN(String subject, String dNAttributeName) + { + return LDAPUtils.escape(subject); + }

Before: if (element) { return jsonError(res, 400, EXISTING_SESSION_LIMITS.snapshot.screenshotElement); } After: if (ssrfPolicyOpts.ssrfPolicy) { await assertBrowserNavigationResultAllowed({ url: tab.url, ...ssrfPolicyOpts, }); }

Before: const SANDBOX_MEDIA_PARAM_KEYS = ["media", "path", "filePath", "mediaUrl", "fileUrl"] as const; After: const SANDBOX_MEDIA_PARAM_KEYS = ["media", "path", "filePath", "mediaUrl", "fileUrl", "image"] as const;

Before: - protected static byte[] getNonce(byte[] iv, long chunkIndex) - { - byte[] nonce = Arrays.clone(iv); - xorChunkId(nonce, chunkIndex); - return nonce; - } After: + extends PGPAEADUtil

Before: wsUrl = opts.cdpUrl; After: + await assertCdpEndpointAllowed(opts.cdpUrl, opts.ssrfPolicy); wsUrl = opts.cdpUrl;

Added isDefaultMemoryPath function: function isDefaultMemoryPath(relPath: string): boolean { const normalized = relPath.trim().replace(/^.\//, "").replace(/\\g/, "/"); if (!normalized) { return false; } if ( normalized === "MEMORY.md" || normalized === "memory.md" || normalized === "DREAMS.md" || normalized === "dreams.md" ) { return true; } return normalized.startsWith("memory/"); } Modified buildQmdProcessPath to use isDefaultMemoryPath: function buildQmdProcessPath(rawPath: string | undefined): string { const nodeBinDir = path.dirname(process.execPath); const entries = rawPath?.split(path.delimiter).filter(Boolean) ?? []; return entries.map(entry => { if (!isDefaultMemoryPath(entry)) { throw new Error("Invalid memory path"); } return entry; }).join(path.delimiter); }

--- a/src/infra/heartbeat-runner.ts +++ b/src/infra/heartbeat-runner.ts @@ -917,7 +952,7 @@ MessageThreadId: delivery.threadId, Provider: hasExecCompletion ? "exec-event" : hasCronEvents ? "cron-event" : "heartbeat", SessionKey: runSessionKey, - ForceSenderIsOwnerFalse: hasExecCompletion, + ForceSenderIsOwnerFalse: hasExecCompletion || hasUntrustedPendingEvents, }; if (!visibility.showAlerts && !visibility.showOk && !visibility.useIndicator) { emitHeartbeatEvent({

- return normalizeLowercaseStringOrEmpty(evt).includes("exec finished"); + const normalized = normalizeLowercaseStringOrEmpty(evt).trimStart(); return ( /^exec finished(?::|\s*\()/.test(normalized) || /^exec (completed|failed) \([a-z0-9_-]{1,64}, (code -?\d+|signal [^)]+)\)( :: .*)?$/.test( normalized, ) );

Before: -async function isFeedbackInvokeAuthorized(context: MSTeamsTurnContext, deps: MSTeamsMessageHandlerDeps): Promise<boolean> { After: +async function isInvokeAuthorized(params: { context: MSTeamsTurnContext; deps: MSTeamsMessageHandlerDeps; deniedLogs: { dm: string; channel: string; group: string }; includeInvokeName?: boolean }): Promise<boolean> { + const { context, deps, deniedLogs, includeInvokeName = false } = params; Before: - deps.log.debug?.("dropping feedback invoke (dm sender not allowlisted)", { After: + deps.log.debug?.(deniedLogs.dm, { Before: - deps.log.debug?.("dropping feedback invoke (not in team/channel allowlist)", { After: + deps.log.debug?.(deniedLogs.channel, { Before: - deps.log.debu

- const shellPayload = command.shellPayload; + const shellWrapperInvocation = isShellWrapperInvocation(command.argv);

Before: - const filePath = record?.path; After: + let normalizedRecord: Record<string, unknown> | undefined; + for (const key of pathParamKeys) { + const filePath = record?.[key]; + if (typeof filePath !== "string" || !filePath.trim()) { + continue; + } + // Path validation and normalization logic here + }

Before: - return readLocalFileSafely(resolvePathFromInput(params.cfg, params.agentId || '', params.workspaceDir || '')); After: + if (!isAgentScopedHostMediaReadAllowed(params)) { + return undefined; + } + const resolvedPath = resolvePathFromInput(params.cfg, params.agentId || '', params.workspaceDir || ''); + return readLocalFileSafely(resolvedPath);

Added functions: resolveFollowupAuthorizationKey(run: FollowupRun["run"]): string splitCollectItemsByAuthorization(items: FollowupRun[]): FollowupRun[][] Modified function: resolveOriginRoutingMetadata(items: FollowupRun[]): OriginRoutingMetadata

Before: After: import { resolveAgentConfig, resolveAgentWorkspaceDir, resolveSessionAgentId, } from "../../agents/agent-scope.js"; +let replyMediaPathsRuntimePromise: Promise<typeof import("./reply-media-paths.runtime.js")> | null = null;

Added a new function `didCrossDocumentUrlChange`: ```typescript function didCrossDocumentUrlChange(page: { url(): string }, previousUrl: string): boolean { return page.url() !== previousUrl; }

Before: + /** Session context needed to preserve outbound media policy on recovery. */ + session?: OutboundSessionContext; After: - mirror: params.mirror, + session: params.session,

Before: await resolvePinnedHostnameWithPolicy(parsed.hostname, { policy: ssrfPolicy, }); After: try { await resolvePinnedHostnameWithPolicy(parsed.hostname, { policy: ssrfPolicy, }); } catch (err) { if (err instanceof SsrFBlockedError) { throw new BrowserCdpEndpointBlockedError({ cause: err }); } throw err; }

Before: ```typescript const wss = new WebSocketServer({ noServer: true }); ``` After: ```typescript const wss = new WebSocketServer({ noServer: true, maxPayload: MAX_REALTIME_MESSAGE_BYTES, });

Before: - return true; After: + return false;

Before: - const resolvedAuth: ResolvedGatewayAuth; After: + const getResolvedAuth = opts.getResolvedAuth ?? (() => resolvedAuth);

Before: - try { - await resolvePinnedHostnameWithPolicy(parsed.hostname, { - policy: ssrfPolicy, - }); - } catch (err) { - // Rethrow SSRF policy failures against the CDP endpoint itself as a - // browser-endpoint-scoped error so the route mapping does not confuse - // them with navigation-target policy blocks. - if (err instanceof SsrFBlockedError) { - throw new BrowserCdpEndpointBlockedError({ cause: err }); - } - throw err; - } After: + await resolvePinnedHostnameWithPolicy(parsed.hostname, { + policy: ssrfPo

--- a/uefi_firmware/compression/Tiano/Decompress.c +++ b/uefi_firmware/compression/Tiano/Decompress.c @@ -208,14 +188,16 @@ Routine Description: } for (Index = 0; Index < NumOfChar; Index++) { + if (BitLen[Index] > 16) { + return (UINT16) BAD_TABLE; + } Count[BitLen[Index]]++; } @@ -245,18 +227,20 @@ Routine Description: if (Len <= TableBits) { + if (Start[Len] >= NextCode || NextCode > MaxTableLength) { + return (UINT16) BAD_TABLE; + } + for (Index = Start[Len]; Index < NextCode; Index++) { - if(Index >= TableSize) - { - Sd->mBadAlgorithm = 1; - return (UINT16) BAD_TABLE; - } Table[Index] = Char; } +

Before: Largest -= (Block.Gap + 1); Count = Block.AckBlock + 1; After: if (Count > Largest + 1) { *InvalidFrame = TRUE; return FALSE; } Largest -= (Block.Gap + 1); Count = Block.AckBlock + 1;

--- a/uefi_firmware/compression/Tiano/Decompress.c +++ b/uefi_firmware/compression/Tiano/Decompress.c @@ -208,14 +188,16 @@ Routine Description: } for (Index = 0; Index < NumOfChar; Index++) { + if (BitLen[Index] > 16) { + return (UINT16) BAD_TABLE; + } Count[BitLen[Index]]++; } // ... (lines omitted for brevity) if (Len <= TableBits) { + if (Start[Len] >= NextCode || NextCode > MaxTableLength) { + return (UINT16) BAD_TABLE; + } + for (Index = Start[Len]; Index < NextCode; Index++) { - if(Index >= TableSize) - { - Sd->mBadAlgorithm = 1; - return (UINT16) BAD_TABLE; - } Table[Index] = Char; } + } else {

Before: - if (isSafeProperty(object, prop)) { After: + if (isSafeObjectProperty(object, prop) || isSafeArrayProperty(object, prop)) {

- // No changes before this point + module.exports = function safeJsonForScript(data) { return JSON.stringify(data, null, 2) .replace(/</g, '\u003c') .replace(/
/g, '\u2028') .replace(/
/g, '\u2029'); };

Before: - fullname = os.path.join(translation.component.full_path, filename) After: + try: + fullname = getter() + except ValidationError: + continue + if fullname and os.path.exists(fullname):

Before: - value = "******"; After: + properties.forEach((k, v) -> { + String configKey = moduleName + "." + providerName + "." + key + "." + k; + String configValue = maskConfigValue(k.toString(), v.toString(), keywords); + configList.put(configKey, configValue); + });

Before: } else if ((options.disallowedTagsMode === 'discard' || options.disallowedTagsMode === 'completelyDiscard') && (nonTextTagsArray.indexOf(tag) !== -1)) { // htmlparser2 does not decode entities inside raw text elements like // textarea and option. The text is already properly encoded, so pass // it through without additional escaping to avoid double-encoding. result += text; } After: } else if ((options.disallowedTagsMode === 'discard' || options.disallowedTagsMode === 'completelyDiscard') && (tag === 'textarea' || tag === 'xmp')) { // htmlparser2 treats <textarea> and <xmp> as raw text elements and // does NOT decode entities inside them. The text is already properly // encoded, so pass it through without additional escaping to avoid // double-encoding. Other "nonTextTags" like <option> are not raw text // elements in htmlparser2, so their contents are decoded and must be // escaped below like any other text (important to prevent XSS via // entity-encoded payloads such as <option>&lt;script&gt;...&lt;/script&gt;</option>). result += text; }

Before: raw: req.data.global.stylesStylesheet || '' After: css = (req.data.global.stylesStylesheet || '').replaceAll('</', '<\/') raw: css

Before: return fmt.Sprintf("spiffe://.+/ns/%s/(.+/|)sa/%s(/.+)?", ns, sa) After: return fmt.Sprintf("spiffe://.+/ns/%s/(.+/|)sa/%s(/.+)?", regexp.QuoteMeta(ns), regexp.QuoteMeta(sa))

Added method: choicesFieldAllowedByProjection(filter, projection) { if (!projection || !Object.keys(projection).length) { return true; } // Builders that aren't named after a top-level schema field are // not gated by the projection. const field = self.schema.find(f => f.name === filter); if (!field) { return true; } const topLevel = filter.split('.')[0]; const values = Object.values(projection); const hasInclusion = values.some(v => v && v !== 0); const hasExclusion = values.some(v => v === 0 || v === false); if (hasInclusion) { // Inclusion projection: field must be explicitly included. return Boolean(projection[topLevel]); } if (hasExclusion) { // Exclusion projection: field must not be explicitly excluded. return pro

Before: - } else if (!query.state.project) { + } else { After: + // Note that we MUST NOT honor the "project" query builder here + } else {

Before: response = requests.request(method, url, headers=headers, timeout=timeout, **kwargs) After: @contextmanager def asset_request(...): with requests.Session() as session: for _ in range(max_redirects + 1): validate_asset_url(current_url) response = session.request(...)

Before: - if not os.path.realpath(fullname).startswith(base): After: + if not is_path_within_resolved_directory(fullname, base):

Before: - def __init__(self, settings: SettingsDict) -> None: After: + def __init__(self, configuration: SettingsDict) -> None:

Before: - DocumentUpdated.TYPE -> event.let { - DocumentUpdatedSseEvent( - it.resultId!! - ) After: + DocumentUpdated.TYPE -> { + val resultId = event.resultId + if (resultId == null) { + logger.warn { "Received DocumentUpdated event without resultId, skipping" } + return null + } + DocumentUpdatedSseEvent(resultId) }

- await wait(); + const MIN_RESPONSE_TIME = 2000; + const startTime = Date.now(); + // ... (rest of the code remains unchanged)

from weblate.utils.celery import get_task_progress to from weblate.utils.celery import get_task_metadata, get_task_progress ... if translation_id := metadata.get("translation_id"): obj = get_object_or_404(Translation, pk=translation_id) component = obj.component elif component_id := metadata.get("component_id"): component = obj = get_object_or_404(Component, pk=component_id)

Before: req.on('data', (chunk) => { body += chunk.toString(); }); After: const maxSize = this._config.maxMessageSize ?? 4 * 1024 * 1024; let size = 0; req.on('data', (chunk) => { size += chunk.length; if (size > maxSize) { req.destroy(); reject(new Error(`Request body exceeds maximum size of ${maxSize} bytes`)); return; } body += chunk.toString(); });

Before: - // ... (omitted) After: +//! Sponge-based hash functions built from cryptographic permutations. +//! ... (additional documentation and code)

Before: - const fileExists = await fs.access(filePath); After: + try { + const fileContent = await readFileWithinRoot(filePath); + } catch (error) { + if (!shouldSkipScriptPreflightPathError(error)) { + throw error; + } + }

Before: $cmd = "wget -O {$sqlFile} {$sqlURL}"; After: $cmd = "wget -O " . escapeshellarg($sqlFile) . " " . escapeshellarg($sqlURL);

--- a/lib/validation.js +++ b/lib/validation.js @@ -261,7 +261,7 @@ function wrapValidationError (result, dataVar, schemaErrorFormatter) { */ function getEssenceMediaType (header) { if (!header) return '' - return header.split(';', 1)[0].trim().toLowerCase() + return header.split(/[ ;]/, 1)[0].trim().toLowerCase() } module.exports = {

Before: - final String sessionId; After: + final SessionIdAndRemoteAsync(String sessionId) + { + this.sessionId = sessionId; + identity = null; + session = null; + remoteAsync = null; + } + + SessionIdAndRemoteAsync(Identity identity, Session session) + { + this.sessionId = session.getId(); + this.identity = identity; + this.session = session; + this.remoteAsync = session.getAsyncRemote(); + }

Before: return !failed; After: return !failed & atLeastOneChecked;

Before: return new BaseOidcClientWithCache(new BaseOidcClientJersey(oidcProviderRealmBaseUrl, oidcProviderDiscoveryPath, trustStore, keyStore, keyStore == null ? null : keyStorePassword, proxyUrl, proxyUsername, proxyPassword, buildInfoReader().getUserAgentValue(), oidcProviderClientTimeoutConnect(), After: return new BaseOidcClientWithCache(new BaseOidcClientJersey(oidcProviderRealmBaseUrl, oidcProviderDiscoveryPath, trustStore, keyStore, keyStore == null ? null : keyStorePassword, proxyUrl, proxyUsername, proxyPassword, buildInfoReader().getUserAgentValue(), oidcProviderClientTimeoutConnect(), oidcProviderClientCacheConfigurationResourceTimeout, oidcProviderClientCacheJwksResourceTimeout

Before: $this->logger->debug($packet->getName() . ": " . base64_encode($buffer)); After: $debugSegment = substr($buffer, 0, 1024); $debugSegmentLength = strlen($debugSegment); $fullLength = strlen($buffer); $truncatedLabel = $debugSegmentLength === $fullLength ? "" : " ... (" . ($fullLength - $debugSegmentLength) . " bytes not shown)"; $this->logger->debug($label . ": " . $packet->getName() . " ($fullLength bytes): " . base64_encode($debugSegment) . $truncatedLabel);

- //_log_message("onMessage:msgObj: " . json_encode($json)); + //_log_message("onMessage:msgObj: " . json_encode($json)); + // Strip eval-able fields from browser/guest messages. + if (empty($msgObj->isCommandLineInterface) && ($msgObj->sentFrom ?? '') !== 'php') { + if (is_array($json['msg'] ?? null)) { + unset($json['msg']['autoEvalCodeOnHTML']); + } + if (isset($json['callback']) && !preg_match('/^[a-zA-Z_][a-zA-Z0-9_]*$/', (string)$json['callback'])) { + unset($json['callback']); + } + } if (!empty($msgObj->send_to_uri_pattern)) { $this->msgToSelfURI($json, $msgObj->send_to_uri_pattern); } else if (!empty($json['resourceId'])) {

Before: return os.path.join(EXCEL_FILES_PATH, filename) After: base = os.path.realpath(EXCEL_FILES_PATH) candidate = os.path.realpath(os.path.join(base, filename)) if not _resolved_path_is_within(base, candidate): raise ValueError(f"Invalid filename: {filename}, path escapes EXCEL_FILES_PATH")

--- a/src/pyload/webui/app/blueprints/json_blueprint.py +++ b/src/pyload/webui/app/blueprints/json_blueprint.py @@ -9,7 +9,7 @@ from pyload.core.api import Role from pyload.core.utils import format, fs -from ..helpers import get_permission, login_required, permlist, render_template, set_permission +from ..helpers import clear_all_user_sessions, get_permission, login_required, permlist, render_template, set_permission bp = flask.Blueprint("json", __name__) @@ -360,6 +360,7 @@ def change_password(user_login, user_curpw, user_newpw): if not done: return jsonify(False), 403 #: Wrong password + clear_all_user_sessions(user_login) return jsonify(True)

--- a/objects/configurationUpdate.json.php +++ b/objects/configurationUpdate.json.php @@ -15,6 +15,8 @@ require_once $global['systemRootPath'] . 'objects/configuration.php'; require_once $global['systemRootPath'] . 'objects/functions.php'; +forbidIfIsUntrustedRequest('configurationUpdate'); + _error_log("save configuration {$_POST['language']}");

- if (!empty($requestOrigin)) { - header('Access-Control-Allow-Origin: ' . $requestOrigin); - header('Access-Control-Allow-Credentials: true'); - } else { - header('Access-Control-Allow-Origin: *'); + if (!empty($requestOrigin) && !empty($siteOriginForAllowAll) && $requestOrigin === $siteOriginForAllowAll) { + header('Access-Control-Allow-Origin: ' . $requestOrigin); + header('Access-Control-Allow-Credentials: true'); + } else { + header('Access-Control-Allow-Origin: *');

--- a/html/smartypants.go +++ b/html/smartypants.go @@ -371,7 +371,10 @@ func (r *SPRenderer) smartLeftAngle(out *bytes.Buffer, previousChar byte, text [ i++ } - out.Write(text[:i+1]) + if i == len(text) { // No > found until the end of the text + return i + } + out.Write(text[:i+1]) // include the '>' return i }

Before: static void DestroyXMLTreeChild(XMLTreeInfo *xml_info) { XMLTreeInfo *child, *node; child=xml_info->child; while(child != (XMLTreeInfo *) NULL) { node=child; child=node->child; node->child=(XMLTreeInfo *) NULL; (void) DestroyXMLTree(node); } } After: static void DestroyXMLTreeChild(XMLTreeInfo *xml_info, const size_t depth) { XMLTreeInfo *child, *node; child=xml_info->child; while (child != (XMLTreeInfo *) NULL) { node=child; child=node->child; node->child=(XMLTreeInfo *) NULL; (void) DestroyXMLTree_(node,depth+1); } }

--- a/decidim-core/app/helpers/decidim/amendments_helper.rb +++ b/decidim-core/app/helpers/decidim/amendments_helper.rb @@ -41,7 +41,7 @@ def emendation_announcement_for(emendation) def can_react_to_emendation?(emendation) return unless current_user && emendation.emendation? - true + current_component.current_settings.amendment_reaction_enabled end # Checks if the user can accept and reject the emendation @@ -54,18 +54,9 @@ def allowed_to_accept_and_reject?(emendation) # Checks if the user can promote the emendation def allowed_to_promote?(emendation) return unless emendation.amendment.rejected? && emendation.created_by?(current_user) - return if promoted?(emendation) + return if emendation.amendment.promoted? - true - end - - # Checks if the unique ActionLog created in the promote command exists. - def promoted?(emendation) - logs = Decidim::ActionLog.where(decidim_component_id: emendation.component) - .where(decidim_user_id: emendation.creator_author) - .where(action: "promote") - - logs.select { |log| log.extra["promoted_from"] == emendation.id }.present? + current_component.current_settings.amendment_promotion_enabled end # Renders a UserGroup select field in a form.

Before: (q-4) < p After: (q-p+4+1) > MagickPathExtent

--- plugin/API/router.php +++ plugin/API/router.php - header("Access-Control-Allow-Origin: " . $HTTP_ORIGIN); -header("Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, HEAD"); -header("Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With, ua-resolution, APISecret, Origin, Accept, Access-Control-Request-Method, Access-Control-Request-Headers"); -header('Access-Control-Allow-Private-Network: true'); + +// CORS preflight handling. +// OPTIONS preflights are cross-origin by definition (same-origin requests are never +// preflighted by browsers). Returning Access-Control-Allow-Origin: * without +// Access-Control-Allow-Credentials is safe: +// - External API clients using APISecret (non-credentialed) proceed normally. +// - Credentialed attacker requests are blocked: the browser sees no +// Allow-Credentials:true in the preflight and aborts the actual request, +// so session cookies are never sent. +// Actual GET/POST responses are handled by allowOrigin(true) in get/set.json.php +// which enforces same-origin-only credentials (fixed in commit 986e64aad). if ($_SERVER['REQUEST_METHOD'] === 'OPTIONS') { - header("Access-Control-Max-Age: 86400"); // Cache preflight for 24 hours - http_response_code(200); + header('Access-Control-Allow-Origin: *'); + header('Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS, HEAD'); + header('Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With, ua-resolution, APISecret, Origin, Accept, Access-Control-Request-Method, Access-Control-Request-Headers'); + header('Access-Control-Allow-Private-Network: true'); + header('Access-Control-Max-Age: 86400'); + http_response_code(204); exit; }

--- a/objects/categoryAddNew.json.php +++ b/objects/categoryAddNew.json.php @@ -19,6 +19,7 @@ $obj->msg = __("Permission denied"); die(json_encode($obj)); } +forbidIfIsUntrustedRequest('categoryAddNew'); $objCat = new Category(intval(@$_POST['id'])); $objCat->setName($_POST['name']);

- .setRealm(request.getRealm()) + .setRealm(stripAuth ? null : request.getRealm()) + if (stripAuth) { + future.setRealm(null); + future.setProxyRealm(null); + }

-if (empty($_GET['users_id'])) { - if (!User::isAdmin()) { - $_GET['users_id'] = User::getId(); - } +if (!User::isAdmin()) { + // Non-admin users are always restricted to their own records. + // The empty() guard was bypassable by supplying users_id explicitly (IDOR). + $_GET['users_id'] = User::getId(); }

Before: $tryFile = "{$global['systemRootPath']}{$encoder}videos/{$parts[1]}"; After: $videosBaseDir = realpath("{$global['systemRootPath']}{$encoder}videos"); $realTryFile = realpath($tryFile); if ($videosBaseDir === false || $realTryFile === false || strpos($realTryFile, $videosBaseDir . DIRECTORY_SEPARATOR) !== 0 ) { _error_log("try_get_contents_from_local: blocked path traversal attempt for url={$url}"); return false; }

Before: - while ((*q != '￿') && (*q != '\0')) After: + while ((*q != '\xff') && (*q != '\0') && ((size_t) (q-p) < sizeof(image_info->filename)))

Before: msl_info->group_info[msl_info->number_groups].numImages++; After: msl_info->group_info[msl_info->number_groups-1].numImages++;

- The code did not include any validation for redirect URLs. + A new function `isValidRedirectUrl` was added to validate the URL before redirection.

Before: pfx->teDepth++; *chLimit = '\0'; After: if (pfx->teDepth >= MagickMaxRecursionDepth) { (void) ThrowMagickException(pfx->exception, GetMagickModule(), OptionError, "Expression too deeply nested", "(depth %i exceeds limit %i)", pfx->teDepth, MagickMaxRecursionDepth); return MagickFalse; } pfx->teDepth++; *chLimit = '\0';

Before: - channels_size=(((image->alpha_trait & BlendPixelTrait) != 0) ? 4 : 3)* - ((pixel_format.data_type == JXL_TYPE_FLOAT) ? sizeof(float) : - (pixel_format.data_type == JXL_TYPE_UINT16) ? sizeof(short) : - sizeof(char)); After: + sample_size=sizeof(char); + if ((pixel_format.data_type == JXL_TYPE_FLOAT) || + (pixel_format.data_type == JXL_TYPE_FLOAT16)) + sample_size=sizeof(float); + else + if (pixel_format.data_type == JXL_TYPE_UINT16) + sample_size=sizeof(short); + channels_size=(((image->alpha_trait & BlendPixelTrait) != 0) ? 4U : 3U)* + sample_size; + else + channels_size=(((image->alpha_trait & BlendPixelTrait) != 0) ? 2U : 1U)* + sample_size;

Before: - x_offset=(ssize_t *) AcquireQuantumMemory((size_t) sample_image->columns, - sizeof(*x_offset)); - if (x_offset == (ssize_t *) NULL) - { - sample_image=DestroyImage(sample_image); - ThrowImageException(ResourceLimitError,"MemoryAllocationFailed"); - } - for (j=0; j < (ssize_t) sample_image->columns; j++) - x_offset[j]=(ssize_t) ((((double) j+sample_offset.x)*image->columns)/ - sample_image->columns); After: // Removed the allocation and usage of x_offset

Before: - parameters->subsampling_dx=(int) geometry_info.rho; - parameters->subsampling_dy=(int) geometry_info.sigma; After: + parameters->subsampling_dx=(int) MagickMax(geometry_info.rho,1.0); + parameters->subsampling_dy=(int) MagickMax(geometry_info.sigma,1.0);

Before: - xmp_namespace=ConstantString(GetXMLTreeTag(node)); - (void) SubstituteString(&xmp_namespace,"exif:","xmp:"); - (void) AddValueToSplayTree((SplayTreeInfo *) image->properties, - xmp_namespace,ConstantString(content)); After: + property=ConstantString(GetXMLTreeTag(node)); + (void) SubstituteString(&property,"exif:","xmp:"); + property_length=strlen(property); + if ((property_length <= 2) || (*(property+(property_length-2)) != ':') || + (*(property+(property_length-1)) != '*')) + (void) AddValueToSplayTree((SplayTreeInfo *) image->properties, + ConstantString(property),ConstantString(content)); + property=DestroyString(property);

Before: <time class="duration"><?php echo Video::getCleanDuration($value['duration']); ?></time> After: <time class="duration"><?php echo htmlspecialchars(Video::getCleanDuration($value['duration']), ENT_QUOTES, 'UTF-8'); ?></time>

Added autoCSRFGuard function: function autoCSRFGuard($baseName) { global $global; // Respect existing full bypass (encoder callbacks, CLI, etc.) if (!empty($global['bypassSameDomainCheck']) || isCommandLineInterface()) { return; } // Per-request opt-out — must be set before configuration.php loads if (!empty($global['skipAutoCSRFCheck'])) { return; } // Built-in bypass list. // Groups: // auth/signup — accept calls from mobile apps & external clients // public reads — use POST params for filtering, but mutate nothing // public write — like/view/subscribe actions open to all users // encoder — authenticated via video-hash token, not session static $builtinBypass = [ // Auth & account management 'login.json.php', 'userCrea

Added line: - forbidIfIsUntrustedRequest('categoryDeleteAssets'); - forbidIfIsUntrustedRequest('commentAddNew'); - forbidIfIsUntrustedRequest('comments_like');

Before: - $_GET['livelink'] = $headers[

Before: if (User::isAdmin() && $_SESSION["palavra"] === 'admin') { return true; } After: $stored = $_SESSION["palavra"]; unset($_SESSION["palavra"]); // always consume on any attempt to prevent brute-force if (User::isAdmin() && $stored === 'admin') { return true; }

--- a/src/gql/resolvers/mutations/Asset.php +++ b/src/gql/resolvers/mutations/Asset.php @@ -251,6 +251,10 @@ protected function handleUpload(AssetElement $asset, array $fileInformation): bo } elseif (!empty($fileInformation['url'])) { $url = $fileInformation['url']; + if (!$this->validateScheme($url)) { + throw new UserError("$url contains an invalid scheme."); + } + if (!$this->validateHostname($url)) { throw new UserError("$url contains an invalid hostname."); } @@ -297,6 +301,13 @@ protected function handleUpload(AssetElement $asset, array $fileInformation): bo return true; } + private function validateScheme(string $url): bool + { + // block Gopher/File/FTP Smuggling + $scheme = parse_url($url, PHP_URL_SCHEME); + return in_array(strtolower($scheme), ['http', 'https'], true); + } private function validateHostname(string $url): bool {

--- a/src/controllers/PaymentsController.php +++ b/src/controllers/PaymentsController.php @@ -141,9 +141,7 @@ public function actionPay(): ?Response if (!$order->getIsActiveCart() && !$checkPaymentCanBeMade) { $error = Craft::t('commerce', 'Email required to make payments on a completed order.'); - return $this->asFailure($error, data: [ - $this->_cartVariableName => $this->cartArray($order), - ]); + return $this->asFailure($error); } if ($plugin->getSettings()->requireShippingAddressAtCheckout && !$order->shippingAddressId) {

--- a/libs/application-generic/src/usecases/conditions-filter/conditions-filter.usecase.ts +++ b/libs/application-generic/src/usecases/conditions-filter/conditions-filter.usecase.ts @@ -257,6 +264,17 @@ export class ConditionsFilter extends Filter { config.headers['nv-hmac-256'] = hmac; } + const ssrfError = await validateUrlSsrf(child.webhookUrl); + + if (ssrfError) { + throw new Error( + JSON.stringify({ + message: ssrfError, + data: 'Webhook URL blocked by SSRF protection.', + }) + ); + } + try { return await axios.post(child.webhookUrl, payload, config).then((response) => {

Before: - $resp->error = !unlink("{$clonesDir}{$_GET['deleteDump']}"); After: + // Security: Strip path traversal components and validate path stays within clonesDir + $deleteDump = basename($_GET['deleteDump']); + $filePath = "{$clonesDir}{$deleteDump}"; + $realFilePath = realpath($filePath); + $realClonesDir = realpath($clonesDir); + if ($realFilePath === false || $realClonesDir === false || strpos($realFilePath, $realClonesDir) !== 0) { + $resp->msg = "Invalid file path"; + die(json_encode($resp)); + } + $resp->error = !unlink($realFilePath);

src/stats/TotalRevenue.php @@ -44,6 +44,11 @@ class TotalRevenue extends Stat public function getData(): ?array { + $allowedTypes = [self::TYPE_TOTAL, self::TYPE_TOTAL_PAID]; + if (!in_array($this->type, $allowedTypes, true)) { + $this->type = self::TYPE_TOTAL; + } + return $this->_createChartQuery( [ new Expression(sprintf('SUM([[%s]]) as revenue', $this->type)), src/widgets/TotalRevenue.php @@ -52,6 +52,17 @@ class TotalRevenue extends Widget private TotalRevenueStat $_stat; + /** + * @inheritdoc + */ + protected function defineRules(): array + { + $rules = parent::defineRules(); + $rules[] = [['type'], 'in', 'range' => [TotalRevenueStat::TYPE_TOTAL, TotalRevenueStat::TYPE_TOTAL_PAID]]; + + return $rules; + } + /** * @inheritDoc */

Before: luteEngine := lute.New() After: luteEngine := lute.New() luteEngine.SetSanitize(true)

--- a/src/controllers/AppController.php +++ b/src/controllers/AppController.php @@ -110,17 +112,23 @@ public function actionResourceJs(string $url): Response { $this->requireCpRequest(); - if (!str_starts_with($url, Craft::$app->getAssetManager()->baseUrl)) { + $assetManager = Craft::$app->getAssetManager(); + $baseUrl = StringHelper::ensureRight($assetManager->baseUrl, '/'); + if (!str_starts_with($url, $baseUrl)) { throw new BadRequestHttpException("$url does not appear to be a resource URL"); } - // Close the PHP session in case this takes a while - Session::close(); + $resourceUri = preg_replace('/^(.*)\?.*/', '$1', substr($url, strlen($baseUrl))); - $response = Craft::createGuzzleClient()->get($url); - $this->response->setCacheHeaders(); - $this->response->getHeaders()->set('content-type', 'application/javascript'); - return $this->asRaw($response->getBody()); + try { + $publishedPath = App::resourcePathByUri($resourceUri); + } catch (InvalidArgumentException $e) { + throw new BadRequestHttpException($e->getMessage(), previous: $e); + } + + return $this->response->sendFile($publishedPath, null, [ + 'inline' => true, + ]); }

Before: - return jsonify(True) After: + clear_all_user_sessions(user_login) return jsonify(True)

Before: `resize := exec.Command("powershell", []string{"-command", fmt.Sprintf("Resize-VHD "%s" %d", imagePath.GetPath(), newSize.ToBytes())}...)` After: `resize := exec.Command("powershell", "-command", fmt.Sprintf("Resize-VHD "$ENV:IMAGE_PATH" %d", newSize.ToBytes())) resize.Env = append(os.Environ(), "IMAGE_PATH="+imagePath.GetPath())`

--- a/cmd/apierrorcode_string.go +++ b/cmd/apierrorcode_string.go @@ -131,197 +131,198 @@ func _() { _ = x[ErrInvalidTagDirective-120] _ = x[ErrPolicyAlreadyAttached-121] _ = x[ErrPolicyNotAttached-122] - _ = x[ErrInvalidEncryptionMethod-123] + _ = x[ErrExcessData-123] _ = x[ErrInvalidEncryptionKeyID-124] _ = x[ErrInsecureSSECustomerRequest-125]

--- a/src/controllers/UsersController.php +++ b/src/controllers/UsersController.php @@ -1261,6 +1261,10 @@ public function actionSavePermissions(): Response { $this->requireCpRequest(); + if (!$this->showPermissionsScreen()) { + throw new ForbiddenHttpException('User not authorized to perform this action.'); + } + $currentUser = static::currentUser(); $user = $this->editedUser((int)$this->request->getRequiredBodyParam('userId')); @@ -2784,6 +2788,10 @@ private function _saveUserPermissions(User $user, User $currentUser): void */ private function _saveUserGroups(User $user, User $currentUser): void { + if (!$currentUser->canAssignUserGroups()) { + return; + } + $groupIds = $this->request->getBodyParam('groups');

Before: ``` $Link['element']['attributes']['href'] = ''; ```After: ``` if ($href !== '' && !preg_match('/^(https?://|mailto:|/|#)/i', $href)) { $Link['element']['attributes']['href'] = ''; }

Before: - return dbListQueryBuilder.build(this).execute(); After: + Query query = dbListQueryBuilder.build(this); + int configuredLimit = securityConfiguration.getQueryItemsLimit(); + // Limit unlimited queries

--- a/oxiad/common/rpc/auth/interceptor.go +++ b/oxiad/common/rpc/auth/interceptor.go @@ -98,8 +98,21 @@ func validateTokenWithContext(ctx context.Context, provider AuthenticationProvid if userName, err = provider.Authenticate(ctx, token); err != nil { slog.Debug("Failed to authenticate token", slog.String("peer", peerMeta.Addr.String()), - slog.String("token", token)) + slog.String("token", redactToken(token))) return "", err } return userName, nil } + +// redactToken returns a redacted version of a token for safe logging. +// For tokens longer than 8 characters, at most the last 8 characters are +// preserved and the rest is replaced with "[REDACTED]". Tokens of 8 characters +// or fewer are fully redacted to "[REDACTED]". +func redactToken(token string) string { + const suffixLen = 8 + const prefix = "[REDACTED]" + if len(token) <= suffixLen { + return prefix + } + return prefix + token[len(token)-suffixLen:] +}

--- a/plugin/Live/test.php +++ b/plugin/Live/test.php @@ -1,3 +1,8 @@ <?php + +require_once dirname(__FILE__) . '/../../videos/configuration.php'; + +if (!User::isAdmin()) { + http_response_code(403); + exit('Forbidden'); +} $timeStarted = microtime(true);

Before: removeMatchingHeaders(/^(?:(?:proxy-)?authorization|cookie)$/i, this._options.headers); After: removeMatchingHeaders(this._headerFilter, this._options.headers);

--- this.inFileEnding = configG.findStringEntry("IN_FILE_ENDING", ""); +++ this.inFileEnding = cleanFileEnding(configG.findStringEntry("IN_FILE_ENDING", "")); --- this.outFileEnding = configG.findStringEntry("OUT_FILE_ENDING", this.inFileEnding.isEmpty() ? ".out" : ""); +++ this.outFileEnding = cleanFileEnding(configG.findStringEntry("OUT_FILE_ENDING", this.inFileEnding.isEmpty() ? ".out" : ""));

Added `safe_mode` parameter and check in `from_config` method: - Added: `effective_safe_mode = (safe_mode if safe_mode is not None else serialization_lib.in_safe_mode())` - Added: `if effective_safe_mode is not False:` - Added: `raise ValueError(...)`

- ctx.SetHeader("Content-Type", info.MimeType) + if info.MimeType == "" || info.MimeType == "text/html" || info.MimeType == "image/svg+xml" { + ctx.SetHeader("Content-Type", "application/octet-stream") + } else { + ctx.SetHeader("Content-Type", info.MimeType)

Before: - strings.ReplaceAll(a.filterTemplate, "{username}", username), After: + strings.ReplaceAll(a.filterTemplate, "{username}", ldap.EscapeFilter(username)), Before: - userDN = strings.ReplaceAll(a.dnTemplate, "{username}", username), After: + userDN = strings.ReplaceAll(a.dnTemplate, "{username}", ldap.EscapeDN(username))

Added: const CLONE_OPTIONS = /^\*(-|--|--no-)[\\\dlsqvnobucj]+/; function isCloneSwitch(char: string, arg: string | unknown) { return Boolean(typeof arg === 'string' && CLONE_OPTIONS.test(arg) && arg.includes(char)); } Changed: if (method === 'clone' && isCloneSwitch('u', arg)) {

--- a/backend/handlers/assets.go +++ b/backend/handlers/assets.go @@ -122,11 +122,13 @@ func (h AssetsHandler) GetNoteAssets( } } -// TODO Work out way to authenticate this func (h AssetsHandler) GetNoteAssetContentByID( ctx context.Context, input *GetNoteAssetContentByIDInput) (*huma.StreamResponse, error) { + authDetails, _ := h.AuthProvider.TryGetAuthDetails(ctx) + optionalUserUID := authDetails.GetOptionalUserID() if asset, info, stream, err := h.AssetsService.GetNoteAssetContentByID( + optionalUserUID, input.NoteID, input.AssetID, h.Storage); err != nil {

--- a/coders/viff.c +++ b/coders/viff.c @@ -1098,6 +1098,8 @@ static MagickBooleanType WriteVIFFImage(const ImageInfo *image_info, /* Convert MIFF to VIFF raster pixels. */ + if (packets != (MagickSizeType) ((size_t) packets)) + ThrowWriterException(ResourceLimitError,"MemoryAllocationFailed"); pixel_info=AcquireVirtualMemory((size_t) packets,sizeof(*pixels)); if (pixel_info == (MemoryInfo *) NULL) ThrowWriterException(ResourceLimitError,"MemoryAllocationFailed");

- .unwrap(); // We made sure that start_block_hash is on our chain. + .unwrap(); // Safe: We validated that start_block_hash is a macro block on our chain.

--- a/MagickCore/xml-tree.c +++ b/MagickCore/xml-tree.c - terminal=utf8[length-1]; - utf8[length-1]='\0'; + terminal=utf8[MagickMax(length-1,0)]; + utf8[MagickMax(length-1,0)]='\0';

--- a/MagickCore/effect.c +++ b/MagickCore/effect.c @@ -1369,7 +1369,13 @@ MagickExport Image *DespeckleImage(const Image *image,ExceptionInfo *exception) /* Allocate image buffer. */ - length=(size_t) ((image->columns+2)*(image->rows+2)); + if ((image->columns > (MAGICK_SIZE_MAX-2)) || + (image->rows > (MAGICK_SIZE_MAX-2))) + { + despeckle_image=DestroyImage(despeckle_image); + ThrowImageException(ResourceLimitError,"MemoryAllocationFailed"); + } + length=(image->columns+2)*(image->rows+2); pixel_info=AcquireVirtualMemory(length,sizeof(*pixels)); buffer_info=AcquireVirtualMemory(length,sizeof(*buffer)); if ((pixel_info == (MemoryInfo *) NULL) ||

--- a/backend/services/auth.go +++ b/backend/services/auth.go @@ -29,6 +29,7 @@ func (s AuthService) GetAccessToken( if err := db.DB. First(&user, "username = ?", username). Select("id", "password").Error; err != nil { + user.IsPasswordMatch(password) // prevent CWE-208 return core.AccessToken{}, InvalidCredentialsError } --- a/backend/db/models.go +++ b/backend/db/models.go @@ -42,10 +44,14 @@ func (u *User) IsPasswordMatch(plainPassword string) bool { var current []byte if len(u.Password) == 0 { - return false + // prevent CWE-208 + current = nullPasswordHash + } else { + current = u.Password } - if err := bcrypt.CompareHashAndPassword(u.Password, []byte(plainPassword)); err == nil { + if err := bcrypt.CompareHashAndPassword(current, []byte(plainPassword)); err == nil {

--- a/runtime/template/v2/template.go +++ b/runtime/template/v2/template.go @@ -87,7 +87,7 @@ func init() { sprigFuncs := sprig.TxtFuncMap() delete(sprigFuncs, "env") delete(sprigFuncs, "expandenv") - + delete(sprigFuncs, "getHostByName") maps.Copy(tplFuncs, sprigFuncs)

--- a/web/ui/mantine-ui/src/pages/query/uPlotChartHelpers.ts +++ b/web/ui/mantine-ui/src/pages/query/uPlotChartHelpers.ts @@ -153,7 +153,7 @@ const tooltipPlugin = (useLocalTime: boolean, data: AlignedData) => { <div class="date">${formatTimestamp(ts, useLocalTime)}</div> <div class="series-value"> <span class="detail-swatch" style="background-color: ${color}"></span> - <span>${labels.__name__ ? labels.__name__ + ": " : " "}<strong>${value}</strong></span> + <span>${labels.__name__ ? escapeHTML(labels.__name__) + ": " : " "}<strong>${value}</strong></span> </div> ${formatLabels(labels)} `.trimEnd();

--- a/src/PIL/FitsImagePlugin.py +++ b/src/PIL/FitsImagePlugin.py @@ -128,8 +128,9 @@ class FitsGzipDecoder(ImageFile.PyDecoder): def decode(self, buffer: bytes | Image.SupportsArrayInterface) -> tuple[int, int]: assert self.fd is not None - value = gzip.decompress(self.fd.read()) - - rows = [] - offset = 0 - number_of_bits = min(self.args[0] // 8, 4) - for y in range(self.state.ysize): - row = bytearray() - for x in range(self.state.xsize): - row += value[offset + (4 - number_of_bits) : offset + 4] - offset += 4 - rows.append(row) + with gzip.open(self.fd) as fp: + value = fp.read(self.state.xsize * self.state.ysize * 4) + + rows = [] + offset = 0 + number_of_bits = min(self.args[0] // 8, 4) + for y in range(self.state.ysize): + row = bytearray() + for x in range(self.state.xsize): + row += value[offset + (4 - number_of_bits) : offset + 4] + offset += 4 + rows.append(row)

--- a/server/asset_upload_handler.go +++ b/server/asset_upload_handler.go @@ -67,6 +67,13 @@ func AssetUploadHandler(cruds map[string]*resource.DbResource) func(c *gin.Conte c.AbortWithError(400, errors.New("filename query parameter is required")) return } + // Strip path traversal from filename + if fileName != "" { + fileName = filepath.Clean(fileName) + for strings.HasPrefix(fileName, "..") { + fileName = strings.TrimPrefix(strings.TrimPrefix(fileName, ".."), string(filepath.Separator)) + } + } // Validate table and column dbResource, ok := cruds[typeName] if !ok || dbResource == nil {

--- a/lib/core/AxiosHeaders.js +++ b/lib/core/AxiosHeaders.js @@ -5,18 +5,49 @@ import parseHeaders from '../helpers/parseHeaders.js'; const $internals = Symbol('internals'); +const isValidHeaderValue = (value) => !/[ ]/.test(value); + +function assertValidHeaderValue(value, header) { + if (value === false || value == null) { + return; + } + + if (utils.isArray(value)) { + value.forEach((v) => assertValidHeaderValue(v, header)); + return; + } + + if (!isValidHeaderValue(String(value))) { + throw new Error(`Invalid character in header content ["${header}"]`); + } +} function normalizeValue(value) { if (value === false || value == null) { return value; } - return utils.isArray(value) - ? value.map(normalizeValue) - : String(value).replace(/[ ]+$/, ''); + return utils.isArray(value) ? value.map(normalizeValue) : stripTrailingCRLF(String(value)); } function parseTokens(str) { @@ -98,6 +129,7 @@ class AxiosHeaders { _rewrite === true || (_rewrite === undefined && self[key] !== false) ) { + assertValidHeaderValue(_value, _header); self[key || _header] = normalizeValue(_value); } }

--- a/backend/routers/social/__init__.py +++ b/backend/routers/social/__init__.py @@ -149,9 +176,12 @@ def create_post( moderation_enabled = settings.get("ai_bot_moderation_enabled", False) initial_status = "pending" if moderation_enabled else "validated" + # Sanitize content to prevent Stored XSS + clean_content = sanitize_content(post_data.content) + new_post = DBPost( author_id=current_user.id, - content=post_data.content, + content=clean_content, visibility=post_data.visibility,

temp_dir_real = os.path.realpath(temp_dir) for member in zip_file.namelist(): member_path = os.path.realpath(os.path.join(temp_dir_real, member)) if not member_path.startswith(temp_dir_real + os.sep): raise ValueError(f"Zip Slip path traversal detected: {member}")

Before: if (!Array.isArray(array)) { throw new Error('Array expected') } After: if (!Array.isArray(index)) { throw new Error('Array expected for index') }

Before: - // Reject CRLF injection attempts - if (/[ \]/.test(path)) { - throw new Error("Invalid path: Contains control characters"); - } After: + // Reject control character injection attempts. + if (/[ \u0000]/.test(command)) { + throw new Error(`Invalid command: Contains control characters. (${command})`); + }

Before: - next(); After: + const authLimiter = rateLimit({ ... }); + app.use(authLimiter); + // Root endpoint with API information + app.get('/', (req, res) => { ... };

Before: err := os.Rename(fullPath, r.Target) After: targetPath, err := sanitizePath(r.Target, root) if err != nil { logger.LogSFTPRequestBlocked(r, ip, err) sftpServer.HandleWebhookSend("sftp", r, ip, true) return err } err = os.Rename(fullPath, targetPath)

Before: - if (ssl.getSslBundle() == null || ssl.getSslBundle().length() > 0) { - return null; } After: + if (ssl.getSslBundle() != null && ssl.getSslBundle().length() > 0 && bundles.getBundleNames().contains(ssl.getSslBundle())) {

Before: const fetchImpl = params.fetchImpl ?? fetch; After: const externalFetchImpl = params.fetchImpl; const guardedFetchImpl: typeof f

Before: - <Message v-if="loading"> + <Message v-if="loading && !needsTotp"> After: + <form + v-if="needsTotp" + @submit.prevent="submitTotpAndRestart" + > + <FormField + id="openIdTotpPasscode" + ref="totpInput" + v-model="totpPasscode" + v-focus + :label="$t('user.auth.totpTitle')" + autocomplete="one-time-code" + :placeholder="$t('user.auth.totpPlaceholder')" + required + type="text" + inputmode="numeric" + /> + <XButton + :loading="loading" + :disabled="!totpPasscode" + class="mbs-2" + @click="submitTotpAndRestart" + > + {{ $t('user.auth.openIdTotpSubmit') }} + </XButton> + </form>

Before: - const citedContent = await resolveAllCites(content.content); After: + // Resolve any cited/quoted messages first + const citedContent = await resolveAllCites(content.content);

Before: - sourceNamespace := secretSource.Namespace - if sourceNamespace == "" { - sourceNamespace = resource.GetNamespace() - } After: + ns := resource.GetNamespace()

- - reply: (text: string) => Promise<void>, + meta: { eventId: string; createdAt: number }, + ) => Promise<void>; + + /** Called before expensive crypto to allow sender policy checks (optional) */ + authorizeSender?: (params: { + senderPubkey: string; + reply: (text: string) => Promise<void>; + }) => Promise<'allow' | 'block' | 'pairing'>;

Before: func createTask(s *xorm.Session, t *Task, a web.Auth, updateAssignees bool, setBucketIndex bool) error { if t.Title == "" { return ErrTaskCannotBeEmpty{} } // Check if the project exists p, err := GetProjectSimpleByID(s, t.ProjectID) if err != nil { return err } // ... (rest of the function) ... } After: func createTask(s *xorm.Session, t *Task, a web.Auth, updateAssignees bool, setBucketIndex bool) error { if t.Title == "" { return ErrTaskCannotBeEmpty{} } if err := validateRepeatAfter(t.RepeatAfter); err != nil { return err } // Check if the project exists p, err := GetProjectSimpleByID(s, t.ProjectID) if err != nil { return err } // ... (rest of the function) ... }

- await assertPublicHostname(parsedUrl.hostname); + const pinned = await resolvePinnedHostname(parsedUrl.hostname); const dispatcher = createPinnedDispatcher(pinned);

Before: - const [value, depth, path] = task; After: + const [value, depth, path, parent, key] = task;

Before: - return os.path.abspath(os.path.expanduser(model_path)) After: + abs_path = os.path.abspath(os.path.expanduser(model_path)) + allowed_dir = os.path.abspath(os.path.expanduser(cls.u2net_home())) + if not abs_path.startswith(allowed_dir + os.sep) and abs_path != allowed_dir: + raise ValueError( + f"model_path must be within the models directory: {allowed_dir}" + ) + return abs_path

Before: - const bodyResult = await readJsonBodyWithLimit(req, { + const rawBody = await readRequestBodyWithLimit(req, { After: + const parsed = JSON.parse(rawBody) as unknown; + return isFeishuWebhookPayload(parsed) ? parsed : null;

Before: if (fn[0] == '.' && fn[1] == '.' && fn[2] == '/') return 1; After: if (fn[0] == '.' && fn[1] == '.' && (fn[2] == '/' || fn[2] == '\0')) return 1;

Before: // One rate limiter per account, created lazily const rateLimiters = new Map<string, RateLimiter>(); After: const invalidTokenRateLimiters = new Map<string, InvalidTokenRateLimiter>(); const PREAUTH_MAX_REQUESTS_PER_MINUTE = 10; const INVALID_TOKEN_WINDOW_MS = 60_000; const INVALID_TOKEN_MAX_TRACKED_KEYS = 5_000; class InvalidTokenRateLimiter { private readonly limit: number; private readonly state = new Map<string, InvalidTokenRateLimitState>(); constructor(limit: number) { this.limit = limit; } // ... (rest of the class implementation) }

Before: - if(in_array(strtolower($tag_name), $tags)) { After: + $tag_name_lower = strtolower($tag_name); + if(in_array($tag_name_lower, $tags)) { + if ($tag_name_lower === 'style' && $this->hasDangerousStyleContent($element->textContent)) { + $element->parentNode->removeChild($element); + continue; + }

Before: uids = append(uids, strings.TrimSuffix(parts[4], ".ics")) After: if urlProjectID, ok := uidURLProjects[t.UI]; ok && urlProjectID == t.ProjectID { resources = append(resources, data.Resource{UID: t.UI, ProjectID: t.ProjectID}) }

Before: - await process_image(url) After: + _validate_url(url) + if _is_private_ip(parsed.hostname): + raise HTTPException(status_code=400, detail='Private IP addresses are not allowed.') + await process_image(url)

Before: - accessibleProjects = builder.Eq{"project_id": linkShare.ProjectID} - s.Where(builder.Or( - builder.Eq{"created_by_id": a.GetID()}, - accessibleProjects, - )).And(builder.Eq{"id": l.ID}) After: + accessCond := builder.And( + builder.Eq{"created_by_id": a.GetID()}, + accessibleProjects, + ).Or(builder.Eq{"id": l.ID}) + s.Where(accessCond)

Before: - CanDoAPIRoute(c *echo.Context, token *APIToken) (can bool) After: + // Each permission is authoritative: the request is allowed only if the + // stored (Path, Method) for that permission matches exactly. This closes + // GHSA-v479-vf79-mg83 and the wider method/sub-resource confusion it + // enabled.

Before: if _, err := asn1.Unmarshal(ext.Value, &ekus); err != nil || !ekus[0].Equal(oidTCGKpAIKCertificate) { After: if _, err := asn1.Unmarshal(ext.Value, &ekus); err != nil || len(ekus) == 0 || !ekus[0].Equal(oidTCGKpAIKCertificate) {

Before: ```php if ($hmac != $this->hmac_check->hash(pack('NNCa*', $this->get_seq_no, $packet_length, $padding_length, $payload . $padding))) { ``` After: ```php } elseif (!$this->_equals($hmac, $this->hmac_check->hash(pack('NNCa*', $this->get_seq_no, $packet_length, $padding_length, $payload . $padding)))) {

Before: ```python doc_root: Document = parseString(data) ``` After: ```python class _XmpBuilder(ExpatBuilderNS): def custom_entity_declaration_handler(...): raise ExpatError(f'Forbidden entities: {entity_name!r}') # Usage... parser = XMLParserType() builder = _XmpBuilder() builder.install(parser) doc_root: Document = builder.parseString(data)

- import { normalizeUrl } from './index.js'; + import { isRedirect, normalizeUrl, redirect } from './index.js';

- return pathname.replace(/\/g, '%5C').replace(//+/g, '/'); + return pathname .replace(/\/g, '%5C') .replace(/[ ]/g, '') .replace(//+/g, '/');

Before: chartName := strings.TrimSpace(chartName) After: if chartName == "." || chartName == ".." { return fmt.Errorf("chart name %q is not allowed", chartName) } if chartName != filepath.Base(chartName) { return fmt.Errorf("chart name %q must not contain path separators", chartName) }

Before: - .ok_or_else(|| { - Error::RecordFile(format!( - "Could not find entry for {} ({})", - relative_to_site_packages.simplified_display(), - src.simplified_display() - )) + .ok_or_else(|| Error::RecordFile { + relative: relative_to_site_packages.to_path_buf(), + absolute: src.to_path_buf(), })?

Before: - fmt.Fprintf(os.Stderr, "WARNING: No provenance file found for plugin. Plugin is not signed and cannot be verified.\n") After: + return nil, fmt.Errorf("plugin verification failed: no provenance file (.prov) found")

Before: After: +func isValidSemver(v string) bool { + _, err := semver.NewVersion(v) + return err == nil +} -// Validate the plugin version -if m.Version != "" && !isValidSemver(m.Version) { - return fmt.Errorf("invalid plugin version %q: must be valid semver", m.Version) -}

--- a/httpserver/handler.go +++ b/httpserver/handler.go @@ -83,8 +83,8 @@ func (fs *FileServer) doDir(file *os.File, w http.ResponseWriter, req *http.Requ } } - // Check if the dir has a .goshs ACL file - config, err := fs.findSpecialFile(file.Name()) + // Check for effective .goshs ACL (walks up to webroot so parent configs apply recursively) + config, err := fs.findEffectiveACL(file.Name()) if err != nil logger.Errorf("error reading file based access config: %+v", err) }

Before: - const key = head.resolvedOptions.experimentalStreamKey || DEFAULT_STREAM_KEY; After: + const key = head.resolvedOptions.experimentalStreamKey || DEFAULT_STREAM_KEY; + assertValidStreamKey(key);

Before: - REJECTED_STATUSES = %w[REJECTED DOUBLE_SPEND_ATTEMPTED].freeze After: + REJECTED_STATUSES = %w[ + REJECTED + DOUBLE_SPEND_ATTEMPTED + INVALID + MALFORMED + MINED_IN_STALE_BLOCK + ].freeze

Before: - REJECTED_STATUSES = %w[REJECTED DOUBLE_SPEND_ATTEMPTED].freeze After: + REJECTED_STATUSES = %w[ + REJECTED + DOUBLE_SPEND_ATTEMPTED + INVALID + MALFORMED + MINED_IN_STALE_BLOCK + ].freeze

Before: ```python await self.run_command(cmd) ``` After: ```python def run_command(self, cmd) -> str: # ... (rest of the method remains unchanged)

Before: - const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { - lookupFn: params.lookupFn, - policy: params.policy, - }); After: + const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { + lookupFn: params.lookupFn, + policy: params.policy, + });

Before: /&#x([0-9a-f]{1,6});?/gi After: /&#x([0-9a-f]+);?/gi Before: /&#(\d{1,7});?/g After: /&#(\d+);?/g

Before: if (r instanceof RegExp) { return r.test(v) } After: if (r instanceof RegExp) { return { test: v => { r.lastIndex = 0 return r.test(v) } } }

Before: const content = execSync(`task limit: ${task_args.join(

Before: if (allowedJti) checkForUnsafeRegExp(allowedJti, 'allowedJti') if (allowedAud) checkForUnsafeRegExp(allowedAud, 'allowedAud') if (allowedIss) checkForUnsafeRegExp(allowedIss, 'allowedIss') if (allowedSub) checkForUnsafeRegExp(allowedSub, 'allowedSub') if (allowedNonce) checkForUnsafeRegExp(allowedNonce, 'allowedNonce') After: if (allowedJti) checkForUnsafeRegExp(allowedJti, 'allowedJti') if (allowedAud) checkForUnsafeRegExp(allowedAud, 'allowedAud') if (allowedIss) checkForUnsafeRegExp(allowedIss, 'allowedIss') if (allowedSub) checkForUnsafeRegExp(allowedSub, 'allowedSub') if (allowedNonce) checkForUnsafeRegExp(allowedNonce, 'allowedNonce')

- + +const normalizeNoProxyHost = (hostname) => { + if (!hostname) { + return hostname; + } + + if (hostname.charAt(0) === '[' && hostname.charAt(hostname.length - 1) === ']') { + hostname = hostname.slice(1, -1); + } + + return hostname.replace(/\.+$/, ''); +};

Before: - const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { - lookupFn: params.lookupFn, - policy: params.policy, - }); After: + const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { + lookupFn: params.lookupFn, + policy: params.policy, + });

Before: After: func (api objectAPIHandlers) SelectObjectContentHandler(w http.ResponseWriter, r *http.Request) { ctx := newContext(r, w, "SelectObject") var object, bucket string vars := mux.Vars(r) bucket = vars["bucket"] object = vars["object"] // Fetch object stat info. objectAPI := api.ObjectAPI() if objectAPI == nil { writeErrorResponse(w, ErrServerNotInitialized, r.URL) return } getObjectInfo := objectAPI.GetObjectInfo if api.CacheAPI() != nil { getObjectInfo = api.CacheAPI().GetObjectInfo } if s3Error := checkRequestAuthType(ctx, r, policy.GetObjectAction, bucket, object); s3Error != ErrNone { if getRequestAuthType(r) == authTypeAnonymous { // As per "Permission" section in // https://docs.aws.amazon.com/AmazonS3/latest/API/RESTObjectGET.html If // the object you request does not exist, the error Amazon S3 returns // depends on whether you also have the s3:ListBucket permission. * If you // have the s3:ListBucket permission on the bucket, Amazon S3 will re

Before: - const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { - lookupFn: params.lookupFn, - policy: params.policy, - }); After: + const pinned = await resolvePinnedHostnameWithPolicy(parsedUrl.hostname, { + lookupFn: params.lookupFn, + policy: params.policy, + });

Before: - const body = await req.json?.() - const { _locale } = body || {} - const locale = resolveLocale(req, _locale) After: + const locale = resolveLocale(req) + + const result = await req.payload.find({ + collection: collection as CollectionSlug, + req, + overrideAccess: false,

Before: new_path = os.path.normpath( os.path.join(self.WORKING_DIRECTORY, *paths.split("/")) ) After: base = os.path.realpath(self.WORKING_DIRECTORY) new_path = os.path.realpath( os.path.normpath(os.path.join(self.WORKING_DIRECTORY, *paths.split("/"))) ) if not (new_path.startswith(base + os.sep) or new_path == base): raise PermissionError( f"Path traversal detected: refusing to access path outside workspace" )

Before: if (!path.startsWith(" ")) { return path } After: if (/[\r\n\0]/.test(path)) { throw new Error("Invalid path: Contains control characters"); }

- this.baseUrl = baseUrl; + let normalizedBase: string; try { const parsed = new URL(baseUrl); parsed.hash = ''; parsed.username = ''; parsed.password = ''; normalizedBase = parsed.toString().replace(//$/, ''); } catch { // Unparseable input falls through to raw; downstream axios call will // fail cleanly. Preserves backward compat for tests that pass // placeholder strings. normalizedBase = baseUrl; } this.baseUrl = normalizedBase;

Before: - handler := graphqlServer.CreateHandler(schemaProvider.GetSchema()) After: + gqlHandler := graphqlServer.CreateHandler(schemaProvider.GetSchema()) + handler := queryvalidation.Middleware(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + if r.Header.Get("Accept") == "text/event-stream" { + graphqlServer.HandleSubscription(w, r, gqlHandler.Schema) + return + } + gqlHandler.Handler.ServeHTTP(w, r) + }), queryvalidation.Config{ + MaxDepth: limits.MaxQueryDepth, + })

- -$ipn = PayPalYPT::IPNcheck(); -if (!$ipn) { - die("IPN Fail"); -} + +if (!isset($_POST['txn_id']) || !Transaction::isUnique($_POST['txn_id'])) { + _error_log("PayPalIPN: Duplicate txn_id detected"); + die("Duplicate IPN detected"); +}

Before: - leaf_certificate: cryptography.x509.Certificate After: + leaf_certificate: cryptography.x509.Certificate | None = None + + # Identify the leaf certificate using the SignerInfo's + # issuerAndSeri

Before: - filename = PurePosixPath(upload.filename or '').name After: + def _sanitize_filename(name: str | None) -> str: + return (name or '').rsplit('/')[-1].rsplit('\')[-1] + filename = _sanitize_filename(upload.filename)

Before: - $text = "{$program['title']}"; After: + $safeTitle = htmlspecialchars($program['title'], ENT_QUOTES, 'UTF-8'); + $text = "<abbr title="{$safeTitle}">.</abbr>";

Before: - let cookie = `${name}=${value}` After: + if (!validCookieNameRegEx.test(name)) { + throw new Error('Invalid cookie name') + } + let cookie = `${name}=${value}`

Added functions `_parse_f_string_fields`, `validate_f_string_template` - Added validation logic to check for invalid variable names and format specifiers - Raise ValueError if any invalid conditions are found

Before: if (/(?:^|[\\])\.\.(?:$|[\\])/.test(filename)) {<br>After: if (/(?:^|[\\])\.{1,2}(?:$|[\\])|[\\]{2,}/.test(filename)) {

Before: - export function sort_natural<T> (this: FilterImpl, input: T[], property?: string) { After: + function * sortBy<T> (this: FilterImpl, arr: T[], property: string | undefined, comparator: (a: unknown, b: unknown) => number): IterableIterator<unknown> {

Before: if (/(?:^|[\\/])\.{1,2}(?:$|[\\/])/.test(filename)) { After: if (/(?:^|[\\/])\.{1,2}(?:$|[\\/])|[\\/]{2,}/.test(filename)) {

- const getXorPayload = (token: string): ClientSecretPayload => { ... } + // Removed code handling X-lobe-chat-auth header

Before: this.name = this.options.name || this._getHostname(); After: this.name = (this.options.name || this._getHostname()).toString().replace(/[ ]+/g, '');

Before: - const pairs = cookie.trim().split(';') After: + const pairs = cookie.split(';') Before: - const cookieName = pairStr.substring(0, valueStartPos).trim() After: + const cookieName = trimCookieWhitespace(pairStr.substring(0, valueStartPos)) Before: - let cookieValue = pairStr.substring(valueStartPos + 1).trim() After: + let cookieValue = trimCookieWhitespace(pairStr.substring(valueStartPos + 1))

Before: - self.algorithm = global_args.jwt_algorithm After: + algorithm = global_args.jwt_algorithm + if not algorithm or algorithm.lower() == "none": + raise ValueError(...) + self.algorithm = algorithm

Before: - this.context.memoryLimit.use(str.length + pattern.length + replacement.length) After: + const outputSize = str.length + (parts.length - 1) * (replacement.length - pattern.length) + this.context.memoryLimit.use(outputSize)

Before: await websocket.close( code=1008, reason="Terminal only available in edit mode" ) After: if app_state.enable_auth and not validate_auth(websocket): await websocket.close( WebSocketCodes.UNAUTHORIZED, "MARIMO_UNAUTHORIZED" ) return

Before: @@ -80,6 +81,24 @@ public ServletContext getServletContext() return null; } + /** + * {@inheritDoc} + * <p> + * Only allowed to author with programming right because it allows access to the underlying request that doesn't + * enforce any security checks. + * + * @see javax.servlet.ServletRequestWrapper#getRequest() + */ + @Override + public ServletRequest getRequest() + { + if (this.authorization.hasAccess(Right.PROGRAM)) { + return super.getRequest(); + } + + return null; + } + /** * {@inheritDoc} * <p> After: @@ -80,6 +81,24 @@ public ServletContext getServletContext() return null; } + /** + * {@inheritDoc} + * <p> + * Only allowed to author with programming right because it allows access to the underlying request that doesn't + * enforce any security checks. + * + * @see javax.servlet.ServletRequestWrapper#getRequest() + */ + @Override + public ServletRequest getRequest() + { + if (this.authorization.hasAccess(Right.PROGRAM)) { + return super.getRequest(); + } + + return null; + } + /** * {@inheritDoc} * <p>

Before: - maxEntriesPerShard := mercure.DefaultTopicSelectorStoreCacheMaxEntriesPerShard - shardCount := mercure.DefaultTopicSelectorStoreCacheShardCount After: + cacheSize := mercure.DefaultTopicSelectorStoreCacheSize + switch { + case m.TopicSelectorCache.Size > 0: + cacheSize = m.TopicSelectorCache.Size

Before: # No validation of do-file content After: def _validate_dofile_content(text: str) -> None: dangerous_tokens = ["\n!", "\nshell "] for token in dangerous_tokens: if token in text: raise ValueError( "Shell-escape commands (!cmd or shell cmd) are disabled for security reasons." )

Before: - File entryDestination = new File(toOutputDir, entry.getName()); After: + Path entryPath = outputDirPath.resolve(entry.getName()).toAbsolutePath().normalize(); + if (!entryPath.startsWith(outputDirPath)) { + throw new IOException("Invalid ZIP entry: " + entry.getName()); + } + File entryDestination = entryPath.toFile();

Added methods `_terminal_sanitize_policy`, `_has_foreign_nodes`, and `_stabilize_terminal_sanitize_once` to handle HTML sanitization. Before: ```python class JustHTML: tokenizer: Tokenizer tree_builder: TreeBuilder ``` After: ```python class JustHTML: tokenizer: Tokenizer tree_builder: TreeBuilder @staticmethod def _terminal_sanitize_policy(...): # ... (new method) @staticmethod def _has_foreign_nodes(...): # ... (new method) @staticmethod def _stabilize_terminal_sanitize_once(...): # ... (new method)

- -const enforceRoot = type !== LookupType.Root ... if (enforceRoot) { ... } + ... for (const dir of dirs) { ... } +if (!allowed) continue

Before: - return joinPaths(outDir, routePath) After: + filePath = joinPaths(outDir, routePath) + ensureWithinOutDir(outDir, filePath)

Before: - const isIPv4 = type === 'IPv4' - const prefix = parseInt(separatedRule[1]) After: + let isIPv4 = type === 'IPv4' + let prefix = parseInt(separatedRule[1]) + if (type === 'IPv6' && isIPv4MappedIPv6(addr) && prefix >= 96) { + isIPv4 = true + addr = convertIPv4MappedIPv6ToIPv4(addr) + prefix -= 96 + }

Before: checkPermission(state, Permission.DROP, state.getUser().getPrimaryRole()); After: String roleForIdentity = DatabaseDescriptor.getRoleManager().roleForIdentity(identity); if (roleForIdentity == null) { checkPermission(state, Permission.DROP, RoleResource.root()); } else { checkPermission(state, Permission.DROP, RoleResource.role(roleForIdentity)); }

Before: - maxMembers = 180 - maxBytesPerMembers = 4096 After: + maxMembers = 64

- - checkpoint_rng_state = torch.load(rng_file) + + check_torch_load_is_safe() + checkpoint_rng_state = torch.load(rng_file, weights_only=True)

Before: - let msg_received = match v { - Some(value) => value, + let msg = match v { + Some(value) => match value { + Ok(msg) => msg, + Err(e) => { + debug!("Error parsing dns message {e:?}"); + continue; + }, + },

Before: - d.pop("owner_account_id", None) - d.pop("owner_user_id", None) After: + @staticmethod + def _matches_owner( + task: TaskRecord, + owner_account_id: Optional[str] = None, + owner_user_id: Optional[str] = None, + ) -> bool: + if owner_account_id is not None and task.owner_account_id != owner_account_id: + return False + if owner_user_id is not None and task.owner_user_id != owner_user_id: + return False + return True

Before: - map.entrySet().stream().map(e -> new NavItem(e.getKey(), e.getValue())).collect(Collectors.toList()); After: + map.entrySet().stream() + .filter(e -> isValidLink(e.getValue())) + .map(e -> new NavItem(e.getKey(), e.getValue())) + .collect(Collectors.toList());

Before: - image->emplace(gfx::Image::CreateFrom1xBitmap(bitmap)); After: + if (bitmap.isNull()) { + image->emplace(); + } else { + image->emplace(gfx::Image::CreateFrom1xBitmap(bitmap)); + }

Before: - ObjectInputStream ois = new ObjectInputStream(new ByteArrayInputStream(data)); After: + if (data.startsWith("com.sun.identity")) { + ObjectInputStream ois = new ObjectInputStream(new ByteArrayInputStream(data)); + } else { + throw new SecurityException("Invalid class name in deserialized data"); + }

Before: - configPath, - stateDir: STATE_DIR, After: + if (opts?.includeSensitive === true) { + const auth = resolveGatewayAuth({ authConfig: cfg.gateway?.auth, env: process.env }); + // Surface resolved paths only to admin callers that already have broader gateway access. + snapshot.configPath = createConfigIO().configPa

Before: - const resolved = new Map<string, { entry: ChannelPluginCatalogEntry; priority: number }>(); After: + if (options.excludeWorkspace && candidate.origin === "workspace") { + continue; + } const resolved = new Map<string, { entry: ChannelPluginCatalogEntry; priority: number }>();

Before: if (action === "set") { After: if (ctx.channel === "webchat" && !ctx.gatewayClientScopes?.includes("operator.admin")) { return { text: `⚠️ ${commandLabel} set requires operator.admin for gateway clients.` };

Before: - existing.map((entry) => - fs.rm(path.join(params.targetDir, entry), { - recursive: true, - force: true, - }), - ), After: + existing + .filter((entry) => !isExcluded(entry)) + .map((entry) => + fs.rm(path.join(params.targetDir, entry), { + recursive: true, + force: true, + }), + ),

Before: After: + ListLoggedModelArtifacts: validate_can_read_logged_model, + +# The AJAX artifact download endpoint is a plain Flask route with a path parameter, so it +# can't go in routes.py/BEFORE_REQUEST_VALIDATORS (exact match) and must be added here. +LOGGED_MODEL_BEFORE_REQUEST_VALIDATORS[ + ( + _re_compile_path(_get_ajax_path("/mlflow/logged-models/<model_id>/artifacts/files")), + "GET", + ) +] = validate_can_read_logged_model

Before: - await mkdir(mediaDir, { recursive: true }); After: + const MAX_IMAGES_PER_MESSAGE = 8; + const TLON_MEDIA_DOWNLOAD_IDLE_TIMEOUT_MS = 30_000;

Before: self.screen.navigate(to: initialUrl) After: self.screen.navigate(to: initialUrl, trustA2UIActions: true)

Before: - const ok = await authorizeGatewayBearerRequestOrReply({ + const requestAuth = await authorizeGatewayHttpRequestOrReply({ After: - if (!ok) { + if (!requestAuth) {

Before: - send: async ({ params, respond, context }) => { After: + send: async ({ params, respond, context, client }) => {

Before: - val url = "$scheme://${endpoint.host}:${endpoint.port}" After: + val url = buildGatewayWebSocketUrl(endpoint.host, endpoint.port, tls != null)

Before: - readFileAsync(payloadPath); After: + const allowedPath = validateStructuredPayloadLocalPath(ctx, payloadPath, mediaType); + if (allowedPath) { + return readFileAsync(allowedPath); + }

Before: - const key = normalizeEnvVarKey(rawKey, { portable: true }); After: + const key = normalizeHostOverrideEnvVarKey(rawKey);

Before: if (normalizedHost === "localhost") {<br>After: const canonicalHost = normalizedHost.replace(/\.+$/, ");<br>&nbsp;&nbsp;if (canonicalHost === "localhost") {

Before: - const yamlContent = (await lazyJsYaml()).load(await blob.text()); After: + const yamlContent = (await lazyJsYaml()).safeLoad(await blob.text());

Before: scopeRegexp = p After: scopeRegexp = p p.MatchTimeout = 5 * time.Second

Before: - if (isReplayEvent(update, nowMs)) { After: + if (isReplayEvent(target, update, nowMs)) {

Before: - const visibilityRequesterKey = effectiveRequesterKey.trim(); After: + const visibilityRequesterKey = (opts?.agentSessionKey ?? effectiveRequesterKey).trim(); Before: - let requestedKeyRaw = requestedKeyParam ?? opts?.agentSessionKey; After: + const requestedKeyInput = requestedKeyRaw?.trim() ?? "";