diff options
Diffstat (limited to 'meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch b/meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch new file mode 100644 index 0000000000..13fbaf6d78 --- /dev/null +++ b/meta-python/recipes-devtools/python/python3-pillow/CVE-2023-50447-2.patch | |||
| @@ -0,0 +1,31 @@ | |||
| 1 | From 45c726fd4daa63236a8f3653530f297dc87b160a | ||
| 2 | From: Eric Soroos <eric-github@soroos.net> | ||
| 3 | Date: Fri Oct 27 11:21:18 2023 +0200 | ||
| 4 | Subject: [PATCH] python3-pillow: Don't allow __ or builtins in env dictionarys | ||
| 5 | |||
| 6 | CVE: CVE-2023-50447 | ||
| 7 | |||
| 8 | Upstream-Status: Backport [https://github.com/python-pillow/Pillow/commit/45c726fd4daa63236a8f3653530f297dc87b160a] | ||
| 9 | |||
| 10 | Signed-off-by: Rahul Janani Pandi <RahulJanani.Pandi@windriver.com> | ||
| 11 | --- | ||
| 12 | src/PIL/ImageMath.py | 4 ++++ | ||
| 13 | 1 file changed, 4 insertions(+) | ||
| 14 | |||
| 15 | diff --git a/src/PIL/ImageMath.py b/src/PIL/ImageMath.py | ||
| 16 | index 71872a3fb..923a8eeae 100644 | ||
| 17 | --- a/src/PIL/ImageMath.py | ||
| 18 | +++ b/src/PIL/ImageMath.py | ||
| 19 | @@ -240,6 +240,10 @@ def eval(expression, _dict={}, **kw): | ||
| 20 | args.update(_dict) | ||
| 21 | args.update(kw) | ||
| 22 | for k, v in args.items(): | ||
| 23 | + if '__' in k or hasattr(__builtins__, k): | ||
| 24 | + msg = f"'{k}' not allowed" | ||
| 25 | + raise ValueError(msg) | ||
| 26 | + | ||
| 27 | if hasattr(v, "im"): | ||
| 28 | args[k] = _Operand(v) | ||
| 29 | |||
| 30 | -- | ||
| 31 | 2.40.0 | ||