Bug #12698: Insufficient URL validation for smart proxy and medium - Foreman

Actions

Copy link

Bug #12698

closed

Insufficient URL validation for smart proxy and medium

Added by Daniel Lobato Garcia over 8 years ago. Updated almost 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Daniel Lobato Garcia

Category:

Security

Target version:

1.11.0

Difficulty:

Triaged:

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman/pull/2960

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

Problem: The regex that validates smart proxies URLs only matches 'beginning of text'. This allows us to add just \n after a valid URL and put anything after it. For instance, javascript:alert('hacked'). I haven't found any link to the Foreman proxy URL so the script would not trigger, but if we were to put link_to @smart_proxy.url somewhere (or a plugin did this) it would be unsafe.

Solution: Make the regex match the end of the URL with \Z

Related issues 2 (1 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

	Related to Foreman - Feature #12787: The url validator accepts bad urls like "https://"	New	David Davis	12/11/2015			Actions
	Has duplicate Foreman - Bug #12697: Insufficient validation for smart proxy URL	Duplicate	Daniel Lobato Garcia	12/04/2015			Actions

Project

General

Profile

Custom queries

Bug #12698

Insufficient URL validation for smart proxy and medium

Updated by Dominic Cleal over 8 years ago

Updated by The Foreman Bot over 8 years ago

Updated by Daniel Lobato Garcia over 8 years ago

Updated by Dominic Cleal over 8 years ago

Updated by Daniel Lobato Garcia over 8 years ago

Updated by David Davis over 8 years ago