[Bug 757526] Re: Updated fix for CVE-2010-1000

Felix Geyer debfx at fobos.de
Fri Apr 15 08:03:43 UTC 2011

Previous message (by thread): [Bug 757526] Re: Updated fix for CVE-2010-1000
Next message (by thread): [Bug 757526] Re: Updated fix for CVE-2010-1000
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The test doesn't catch strings that only have one ".." at the beginning.
So "../foo" passes  the test while "../../foo" is caught by it.

-- 
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to kdenetwork in Ubuntu.
https://bugs.launchpad.net/bugs/757526

Title:
  Updated fix for CVE-2010-1000

Previous message (by thread): [Bug 757526] Re: Updated fix for CVE-2010-1000
Next message (by thread): [Bug 757526] Re: Updated fix for CVE-2010-1000
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the kubuntu-bugs mailing list