]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 87a63d1) | patch
rgw: reject control characters in response-header actions
authorRobin H. Johnson <rjohnson@digitalocean.com>
Fri, 27 Mar 2020 19:48:13 +0000 (20:48 +0100)
committerAbhishek Lekshmanan <abhishek@suse.com>
Wed, 8 Apr 2020 15:31:20 +0000 (17:31 +0200)
commitc7da604cb101cbe78a257a29498a98c69964e0a6
tree3ac9cdc969d3e0dff26a20bbb67e5d377bf3fe28tree | snapshot
parent87a63d1743ec6428b43cc5a5977fa5e90f50b7edcommit | diff
rgw: reject control characters in response-header actions

S3 GetObject permits overriding response header values, but those inputs
need to be validated to insure only characters that are valid in an HTTP
header value are present.

Credit: Initial vulnerability discovery by William Bowling (@wcbowling)
Credit: Further vulnerability discovery by Robin H. Johnson <rjohnson@digitalocean.com>
Signed-off-by: Robin H. Johnson <rjohnson@digitalocean.com>
src/rgw/rgw_rest_s3.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.