FIX CVE-2019-11199

Dolibarr · Jul 30, 2019 · 6aefa64 · 6aefa64
1 parent 471a947
commit 6aefa64
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/htdocs/viewimage.php b/htdocs/viewimage.php
@@ -170,7 +170,9 @@ function llxFooter()
 else $type=dol_mimetype($original_file);
 
 // Security: This wrapper is for images. We do not allow type/html
-if (preg_match('/html/', $type)) accessforbidden('Error: Using the image wrapper to output a file with a mime type HTML is not possible.', 1, 1, 1);
+if (preg_match('/html/i', $type)) accessforbidden('Error: Using the image wrapper to output a file with a mime type HTML is not possible.', 1, 1, 1);
+// Security: This wrapper is for images. We do not allow files ending with .noexe
+if (preg_match('/\.noexe$/i', $original_file)) accessforbidden('Error: Using the image wrapper to output a file ending with .noexe is not allowed.', 1, 1, 1);
 
 // Security: Delete string ../ into $original_file
 $original_file = str_replace("../","/", $original_file);