]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 607a65f) | patch
rgw: reject control characters in response-header actions 34504/head
authorRobin H. Johnson <rjohnson@digitalocean.com>
Fri, 27 Mar 2020 19:48:13 +0000 (20:48 +0100)
committerAbhishek Lekshmanan <abhishek@suse.com>
Wed, 8 Apr 2020 15:35:15 +0000 (17:35 +0200)
commit9ca5b3628245e2878426602bb24f1a4e45edc850
tree4017219042ef192afdba66b216460e392db8f3d4tree | snapshot
parent607a65fccd8a80c2f2c74853a6dc5c14ed8a75c1commit | diff
rgw: reject control characters in response-header actions

S3 GetObject permits overriding response header values, but those inputs
need to be validated to insure only characters that are valid in an HTTP
header value are present.

Credit: Initial vulnerability discovery by William Bowling (@wcbowling)
Credit: Further vulnerability discovery by Robin H. Johnson <rjohnson@digitalocean.com>
Signed-off-by: Robin H. Johnson <rjohnson@digitalocean.com>
src/rgw/rgw_rest_s3.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.