]> git.koha-community.org Git - koha.git/commit
Bug 37323: Don't allow symlinks in link files in zip and validate filepaths
authorChris Cormack <chris@bigballofwax.co.nz>
Thu, 18 Jul 2024 23:57:32 +0000 (23:57 +0000)
committerTomas Cohen Arazi <tomascohen@theke.io>
Mon, 12 Aug 2024 18:35:08 +0000 (15:35 -0300)
commitdf3ecb46edf39ebb025eaf747d2b0a8a6c8a6c17
treef96ea876c246719e2f389c70de08401603dc4043
parent7a15b321a34f0b2a8a4a5361fa3633f26c68da5f
Bug 37323: Don't allow symlinks in link files in zip and validate filepaths

Test plan:
0. Apply patch and restart/reload Koha
1. Test that uploading a patron image still works, in single file format and as a zip

Work as suggested

Signed-off-by: Amit Gupta <amit.gupta@informaticsglobal.com>
Signed-off-by: David Cook <dcook@prosentient.com.au>
Signed-off-by: Nick Clemens <nick@bywatersolutions.com>
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
(cherry picked from commit 9bc0521493fbe2f9fe0dde051d0b2f52c8a14a9a)
Signed-off-by: Tomas Cohen Arazi <tomascohen@theke.io>
tools/picture-upload.pl