Commit64ebb9f

committed

FixCVE-2023-41040

This change adds a check during reference resolving to see if itcontains an up-level reference ('..'). If it does, it raises anexception.This fixesCVE-2023-41040, which allows an attacker to access filesoutside the repository's directory.

1 parent91b464c commit64ebb9fCopy full SHA for 64ebb9f

File tree

1 file changed

-0

lines changed

git/refs
- symbolic.py

1 file changed

-0

lines changed

`‎git/refs/symbolic.py`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -168,6 +168,8 @@ def _get_ref_info_helper(`
`168`	`168`	`"""Return: (str(sha), str(target_ref_path)) if available, the sha the file at`
`169`	`169`	`rela_path points to, or None. target_ref_path is the reference we`
`170`	`170`	`point to, or None"""`
	`171`	`+if".."instr(ref_path):`
	`172`	`+raiseValueError(f"Invalid reference '{ref_path}'")`
`171`	`173`	`tokens:Union[None,List[str],Tuple[str,str]]=None`
`172`	`174`	`repodir=_git_dir(repo,ref_path)`
`173`	`175`	`try:`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commit64ebb9f

File tree

1 file changed

1 file changed

`‎git/refs/symbolic.py`

0 commit comments