[SCM] BOINC packaging branch, wheezy, updated. debian/7.0.27+dfsg-5-21-g8ddb22e
Guo Yixuan
culu.gyx at gmail.com
Thu Jun 27 02:20:11 UTC 2013
The following commit has been merged in the wheezy branch:
commit 7a97bbee0344a0b3245e9288f09d5f0d0b77cc20
Author: Guo Yixuan <culu.gyx at gmail.com>
Date: Thu Jun 27 10:08:02 2013 +0800
CVE-2013-2018 3rd patch
boinc-v2: 6e205de096da83b12ffb2f0183b43e51261eb0c4
diff --git a/debian/patches/CVE-2013-2018-3-SQL-injections.patch b/debian/patches/CVE-2013-2018-3-SQL-injections.patch
new file mode 100644
index 0000000..846938f
--- /dev/null
+++ b/debian/patches/CVE-2013-2018-3-SQL-injections.patch
@@ -0,0 +1,33 @@
+From 6e205de096da83b12ffb2f0183b43e51261eb0c4 Mon Sep 17 00:00:00 2001
+From: David Anderson <davea at ssl.berkeley.edu>
+Date: Mon, 7 Jan 2013 23:33:22 -0800
+Subject: [PATCH] - user web: fix a security vulnerability
+
+---
+ html/user/team_search.php | 3 +--
+ 1 file changed, 1 insertion(+), 2 deletions(-)
+
+diff --git a/html/user/team_search.php b/html/user/team_search.php
+index d70c20a..1a87bcd 100644
+--- a/html/user/team_search.php
++++ b/html/user/team_search.php
+@@ -149,7 +149,6 @@ function search($params) {
+ $tried = true;
+ }
+ if ($params->type and $params->type>1) {
+- $type = BoincDb::escape_string($params->type);
+ $list2 = get_teams("type=$type", $params->active);
+ //echo "<br>type matches: ",sizeof($list2);
+ merge_lists($list2, $list, 2);
+@@ -169,7 +168,7 @@ if ($submit || $xml) {
+ $params = null;
+ $params->keywords = get_str('keywords', true);
+ $params->country = get_str("country", true);
+- $params->type = get_str("type", true);
++ $params->type = get_int("type", true);
+ $params->active = get_str('active', true);
+ $list = search($params);
+ if ($xml) {
+--
+1.8.3.1
+
diff --git a/debian/patches/series b/debian/patches/series
index d3edb18..0971b9a 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -63,3 +63,4 @@ link_with_gold.patch
wrapper.patch
CVE-2013-2018-1-SQL-injections.patch
CVE-2013-2018-2-SQL-injections.patch
+CVE-2013-2018-3-SQL-injections.patch
--
BOINC packaging
More information about the pkg-boinc-commits
mailing list