TDE
/
tdelibs
mirror of https://mirror.git.trinitydesktop.org/gitea/TDE/tdelibs
0
0
Fork 0
Code Issues Releases Wiki Activity

Fix security issue CVE-2017-6410

Browse Source 
[taken from RedHat kdelibs patches]

Signed-off-by: Slávek Banko <slavek.banko@axis.cz>
(cherry picked from commit a3b86c2690)
pull/16/head
Slávek Banko 6 years ago
parent aae8e8d8c1
commit 8f6f381ff9
1 changed files with 10 additions and 2 deletions
Show Stats Download Patch File Download Diff File

12
tdeio/misc/kpac/script.cpp
Unescape View File

@ -446,10 +446,18 @@ namespace KPAC
if (!findObj.isValid() || !findObj.implementsCall())
throw Error( "No such function FindProxyForURL" );
KURL cleanUrl = url;
cleanUrl.setPass(QString());
cleanUrl.setUser(QString());
if (cleanUrl.protocol().lower() == "https") {
cleanUrl.setPath(QString());
cleanUrl.setQuery(QString());
}
Object thisObj;
List args;
args.append(String(url.url()));
args.append(String(url.host()));
args.append(String(cleanUrl.url()));
args.append(String(cleanUrl.host()));
Value retval = findObj.call( exec, thisObj, args );
if ( exec->hadException() ) {

Write Preview
Loading…
Cancel
Save