diff options
Diffstat (limited to 'meta-python/recipes-devtools/python/python3-twisted/CVE-2022-24801-4.patch')
| -rw-r--r-- | meta-python/recipes-devtools/python/python3-twisted/CVE-2022-24801-4.patch | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/meta-python/recipes-devtools/python/python3-twisted/CVE-2022-24801-4.patch b/meta-python/recipes-devtools/python/python3-twisted/CVE-2022-24801-4.patch new file mode 100644 index 0000000000..94c4b9c550 --- /dev/null +++ b/meta-python/recipes-devtools/python/python3-twisted/CVE-2022-24801-4.patch | |||
| @@ -0,0 +1,25 @@ | |||
| 1 | From c6838374d0e323b78877ae546e1471c400e4652d Mon Sep 17 00:00:00 2001 | ||
| 2 | From: Tom Most <twm@freecog.net> | ||
| 3 | Date: Mon, 7 Mar 2022 00:32:14 -0800 | ||
| 4 | Subject: [PATCH] Reject non-digit Content-Length | ||
| 5 | |||
| 6 | Upstream-Status: Backport [https://github.com/twisted/twisted/commit/8ebfa8f6577431226e109ff98ba48f5152a2c416] | ||
| 7 | CVE: CVE-2022-24801 | ||
| 8 | Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com> | ||
| 9 | --- | ||
| 10 | src/twisted/web/http.py | 2 ++ | ||
| 11 | 1 file changed, 2 insertions(+) | ||
| 12 | |||
| 13 | diff --git a/src/twisted/web/http.py b/src/twisted/web/http.py | ||
| 14 | index 262da0b..5316d81 100644 | ||
| 15 | --- a/src/twisted/web/http.py | ||
| 16 | +++ b/src/twisted/web/http.py | ||
| 17 | @@ -2274,6 +2274,8 @@ class HTTPChannel(basic.LineReceiver, policies.TimeoutMixin): | ||
| 18 | |||
| 19 | # Can this header determine the length? | ||
| 20 | if header == b"content-length": | ||
| 21 | + if not data.isdigit(): | ||
| 22 | + return fail() | ||
| 23 | try: | ||
| 24 | length = int(data) | ||
| 25 | except ValueError: | ||