Bug#287201: [patch] KDE ftp kioslave applies to woody as well

To: 287201@bugs.debian.org
Cc: security@debian.org
Subject: Bug#287201: [patch] KDE ftp kioslave applies to woody as well
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Wed, 5 Jan 2005 19:11:41 +0100
Message-id: <[🔎] 20050105181140.GA5394@informatik.uni-bremen.de>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 287201@bugs.debian.org

Hi,
this applies to woody as well. Attached you can find the backported upstream
patch against 2.2.2. BTW, this is CAN-2004-1165.

Cheers,
        Moritz

diff -Naur kdelibs-2.2.2.orig/kio/ftp/ftp.cc kdelibs-2.2.2/kio/ftp/ftp.cc
--- kdelibs-2.2.2.orig/kio/ftp/ftp.cc	Wed Jan  5 12:29:07 2005
+++ kdelibs-2.2.2/kio/ftp/ftp.cc	Wed Jan  5 12:28:25 2005
@@ -596,6 +596,14 @@
 {
   assert( sControl > 0 );
 
+  if ( cmd.find( '\r' ) != -1 || cmd.find( '\n' ) != -1)
+  {
+    kdWarning(7102) << "Invalid command received (contains CR or LF): "
+                    << cmd.data() << endl;
+    error( ERR_UNSUPPORTED_ACTION, m_host );
+    return false;
+  }
+
   QCString buf = cmd;
   buf += "\r\n";

Reply to:

Follow-Ups:
- Bug#287201: [patch] KDE ftp kioslave applies to woody as well
  - From: Martin Schulze <joey@infodrom.org>

Prev by Date: Bug#288779: kdebase-bin: Error when using "US international" keyboard layout
Next by Date: Bug#288779: kdebase-bin: Error when using "US international" keyboard layout
Previous by thread: Bug#288779: marked as done (kdebase-bin: Error when using "US international" keyboard layout)
Next by thread: Bug#287201: [patch] KDE ftp kioslave applies to woody as well
Index(es):
- Date
- Thread