projects / platform / core / multimedia / libmm-sound.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c0db623) | patch
Check for symbolic link vulnerability 01/197601/2 accepted/tizen/unified/20190117.151758 submit/tizen/20190116.014210
authorSangchul Lee <sc11.lee@samsung.com>
Mon, 14 Jan 2019 09:53:43 +0000 (18:53 +0900)
committerSangchul Lee <sc11.lee@samsung.com>
Tue, 15 Jan 2019 00:41:42 +0000 (09:41 +0900)
commit066002a253311c55ccab29157ded6e73f460aa33
tree0bdcc6c55eb280ec63f009a5ca67344ea5939184tree | snapshot
parentc0db6232891c9871ae67e7c57094bc20812aff7acommit | diff
Check for symbolic link vulnerability

Verfiy the absolute path by using realpath() and
unlink it if it seems to be unexpected symbolic link.

[Version] 0.12.34
[Issue Type] Security vulnerability

Change-Id: I82d85f1b2d3c218985f59463461dfc005ade5ccf
Signed-off-by: Sangchul Lee <sc11.lee@samsung.com>
mm_sound_bootsound.c diff | blob | history
mm_sound_focus_private.c diff | blob | history
packaging/libmm-sound.spec diff | blob | history
Domain: Multimedia / Audio FW;