Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file"

bug-wget

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file"

From:	Matthew White
Subject:	Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format
Date:	Sun, 14 Aug 2016 21:27:50 +0200

On Sat, 13 Aug 2016 11:57:46 +0200
Tim Rühsen <address@hidden> wrote:

> On Freitag, 12. August 2016 22:13:53 CEST Matthew White wrote:
> > On Wed, 10 Aug 2016 11:30:12 +0200
> > 
> > After debugging wget and libmetalink, I can confirm that, due to how
> > metalink/libmetalink is conceived (see references), metalink:file names
> > posing a security issue are discarded directly by libmetalink, and so they
> > will never get to the wget's metalink module.
> > 
> > e.g. '../File' and '/File1' cannot be written as 'File1' by wget, because
> > the whole metalink:file name is discarded by libmetalink.
> 
> Good finding.
> 
> But don't rely on it.
> And gracefully handle 'discarded' file names.
> 
> Regards, Tim

Ok. I see that the Metalink/HTTP fields "depth" and "name" are not parsed by 
src/http.c (metalink_from_http):
https://tools.ietf.org/html/rfc6249#section-3.4
https://tools.ietf.org/html/rfc6249#section-4

Using a local server, I'm evaluating how --metalink-over-http works in order to 
make the right changes.

Later,
Matthew

-- 
Matthew White <address@hidden>

pgp3VkE60FlI_.pgp
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, (continued)
- Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Tim Ruehsen, 2016/08/02
  - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White, 2016/08/03
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Tim Ruehsen, 2016/08/04
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White, 2016/08/05
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Tim Rühsen, 2016/08/09
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White, 2016/08/10
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Tim Rühsen, 2016/08/10
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White, 2016/08/11
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White, 2016/08/12
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Tim Rühsen, 2016/08/13
    - Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format, Matthew White <=

Prev by Date: Re: [Bug-wget] CVE Request - Gnu Wget 1.17 - Design Error Vulnerability
Next by Date: [Bug-wget] Wget - acess list bypass / race condition PoC
Previous by thread: Re: [Bug-wget] [PATCH] Support metalink:file elements with a "path/file" format
Next by thread: Re: [Bug-wget] [PATCH] With --continue, continue partially downloaded Metalink's files
Index(es):
- Date
- Thread