Python-2: Mailcap Vulnerability (CVE-2015-20107) - Githubissues

AOSC-Dev / aosc-os-abbs

ABBS/ACBS tree for AOSC OS package metadata, build configuration, scripts, and patches

https://packages.aosc.io

GNU General Public License v2.0

100 stars 78 forks source link

Python-2: Mailcap Vulnerability (CVE-2015-20107) #4306

Closed CamberLoid closed 1 year ago

CamberLoid commented 1 year ago

CVE IDs

CVE-2015-20107

Other security advisory IDs

https://bugs.python.org/issue24778

Description

In CPython through 3.10.4, the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments).

The aforementioned problem also affects the legacy python 2. As python 2 is not entirely retired in AOSC OS, a backport of patch is recommended.

See also #4305

Patches

See https://github.com/AOSC-Dev/aosc-os-abbs/pull/4290/commits/f788a9c9517e20949a8a6d3eca3b7f433b476001

PoC(s)

N/A

CamberLoid commented 1 year ago

Fixed via #4290