Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Check bad URIs in Poco library #6466

Merged
merged 1 commit into from Aug 14, 2019
Merged

Check bad URIs in Poco library #6466

merged 1 commit into from Aug 14, 2019

Conversation

alexey-milovidov
Copy link
Member

@alexey-milovidov alexey-milovidov commented Aug 13, 2019

For changelog. Remove if this is non-significant change.

Category (leave one):

  • Bug Fix

Short description (up to few sentences):
Table function url had the vulnerability allowed the attacker to inject arbitrary HTTP headers in the request. This issue was found by Nikita Tikhomirov.

@alexey-milovidov alexey-milovidov added security pr-bugfix Pull request with bugfix, not backported by default minor Priority: minor labels Aug 13, 2019
@alesapin alesapin merged commit cdc6d6c into master Aug 14, 2019
@alexey-milovidov
Copy link
Member Author

It's not ready.

KochetovNicolai pushed a commit that referenced this pull request Sep 19, 2019
Check bad URIs in Poco library

(cherry picked from commit cdc6d6c)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
minor Priority: minor pr-bugfix Pull request with bugfix, not backported by default
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

3 participants