diff options
Diffstat (limited to 'main/awstats/CVE-2017-1000501-2.patch')
| -rw-r--r-- | main/awstats/CVE-2017-1000501-2.patch | 67 |
1 files changed, 0 insertions, 67 deletions
diff --git a/main/awstats/CVE-2017-1000501-2.patch b/main/awstats/CVE-2017-1000501-2.patch deleted file mode 100644 index cbf070e02a6..00000000000 --- a/main/awstats/CVE-2017-1000501-2.patch +++ /dev/null @@ -1,67 +0,0 @@ -From 06c0ab29c1e5059d9e0279c6b64d573d619e1651 Mon Sep 17 00:00:00 2001 -From: Laurent Destailleur <eldy@destailleur.fr> -Date: Wed, 27 Dec 2017 13:39:57 +0100 -Subject: [PATCH] Fix another vulnerability reported by cPanel Security Team - (can execute arbitraty code) - ---- - wwwroot/cgi-bin/awstats.pl | 14 +++++++++----- - 1 file changed, 9 insertions(+), 5 deletions(-) - -diff --git a/wwwroot/cgi-bin/awstats.pl b/wwwroot/cgi-bin/awstats.pl -index fca4900f..4f14c6ee 100755 ---- a/wwwroot/cgi-bin/awstats.pl -+++ b/wwwroot/cgi-bin/awstats.pl -@@ -17145,7 +17145,6 @@ sub HTMLMainExtra{ - - if ( $QueryString =~ /config=([^&]+)/i ) { - $SiteConfig = &Sanitize("$1"); -- $SiteConfig =~ s/\.\.//g; # Avoid directory transversal - } - if ( $QueryString =~ /diricons=([^&]+)/i ) { $DirIcons = "$1"; } - if ( $QueryString =~ /pluginmode=([^&]+)/i ) { -@@ -17191,10 +17190,13 @@ sub HTMLMainExtra{ - # If migrate - if ( $QueryString =~ /(^|-|&|&)migrate=([^&]+)/i ) { - $MigrateStats = &Sanitize("$2"); -+ - $MigrateStats =~ /^(.*)$PROG(\d{0,2})(\d\d)(\d\d\d\d)(.*)\.txt$/; -- $SiteConfig = $5 ? $5 : 'xxx'; -+ $SiteConfig = &Sanitize($5 ? $5 : 'xxx'); - $SiteConfig =~ s/^\.//; # SiteConfig is used to find config file - } -+ -+ $SiteConfig =~ s/\.\.//g; # Avoid directory transversal - } - else { # Run from command line - $DebugMessages = 1; -@@ -17204,9 +17206,10 @@ sub HTMLMainExtra{ - - # If migrate - if ( $ARGV[$_] =~ /(^|-|&|&)migrate=([^&]+)/i ) { -- $MigrateStats = "$2"; -+ $MigrateStats = &Sanitize("$2"); -+ - $MigrateStats =~ /^(.*)$PROG(\d{0,2})(\d\d)(\d\d\d\d)(.*)\.txt$/; -- $SiteConfig = $5 ? $5 : 'xxx'; -+ $SiteConfig = &Sanitize($5 ? $5 : 'xxx'); - $SiteConfig =~ s/^\.//; # SiteConfig is used to find config file - next; - } -@@ -17235,7 +17238,6 @@ sub HTMLMainExtra{ - - if ( $QueryString =~ /config=([^&]+)/i ) { - $SiteConfig = &Sanitize("$1"); -- $SiteConfig =~ s/\.\.//g; - } - if ( $QueryString =~ /diricons=([^&]+)/i ) { $DirIcons = "$1"; } - if ( $QueryString =~ /pluginmode=([^&]+)/i ) { -@@ -17301,6 +17303,8 @@ sub HTMLMainExtra{ - $ShowDirectOrigin = 1; - $QueryString =~ s/showdirectorigin[^&]*//i; - } -+ -+ $SiteConfig =~ s/\.\.//g; - } - if ( $QueryString =~ /(^|&|&)staticlinks/i ) { - $StaticLinks = "$PROG.$SiteConfig"; |