[prev in list] [next in list] [prev in thread] [next in thread]
List: kde-commits
Subject: KDE/kdelibs/kioslave/http
From: Rolf Eike Beer <kde () opensource ! sf-tec ! de>
Date: 2010-12-05 19:13:24
Message-ID: 20101205191324.10989AC8A4 () svn ! kde ! org
[Download RAW message or body]
SVN commit 1203946 by dakon:
fix the path injection protections so it also catches / on Windows
M +1 -1 parsinghelpers.cpp
--- trunk/KDE/kdelibs/kioslave/http/parsinghelpers.cpp #1203945:1203946
@@ -556,7 +556,7 @@
if( parameters.contains(fn) ) {
// Content-Disposition is not allowed to dictate directory
// path, thus we extract the filename only.
- QString val = parameters[fn];
+ const QString val = QDir::toNativeSeparators( parameters[fn] );
int slpos = val.lastIndexOf( QDir::separator() );
if( slpos > -1 )
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic