diff options
author | shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2008-03-03 14:36:04 +0000 |
---|---|---|
committer | shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2008-03-03 14:36:04 +0000 |
commit | 702da30a9c38197edb7e5c6ea77f0d06e1cd35f5 (patch) | |
tree | 83ffc37d4ac6b1d3a7e0ad29b800bd040bc61edb /missing/vsnprintf.c | |
parent | 2024133681cd0098404f21ea62529b1985de31fe (diff) |
merge revision(s) 15677:
* lib/webrick/httpservlet/filehandler.rb: should normalize path
separators in path_info to prevent directory traversal attacks
on DOSISH platforms.
reported by Digital Security Research Group [DSECRG-08-026].
* lib/webrick/httpservlet/filehandler.rb: pathnames which have
not to be published should be checked case-insensitively.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_1_8_6@15678 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'missing/vsnprintf.c')
0 files changed, 0 insertions, 0 deletions