ReVanced-Mirror/Apktool
1
0
Fork 0
mirror of https://github.com/revanced/Apktool.git synced 2024-06-01 19:06:23 +02:00
Code Issues Projects Releases Wiki Activity
93e7d6bdbf
Apktool/brut.apktool/apktool-lib/src/test
History
Connor Tumbleson 93e7d6bdbf
Prevent arbitrary file writes with malicious resource names. (#3484) 
* refactor: rename sanitize function

* fix: expose getDir

* fix: safe handling of untrusted resource names

 - fixes: GHSA-2hqv-2xv4-5h5w

* test: sample file for GHSA-2hqv-2xv4-5h5w

* refactor: avoid detection of absolute files for resource check

* chore: enable info mode on gradle

* test: skip test on windows

* chore: debug windows handling

* fix: normalize entry with file separators

* fix: normalize filepath after cleansing

* chore: Android paths are not OS specific

* refactor: use java.nio for path traversal checking

* chore: align path separator on Windows for Zip files

* chore: rework towards basic directory traversal

* chore: remove '--info' on build.yml
2024-01-05 06:28:07 -05:00
..
java/brut/androlib Prevent arbitrary file writes with malicious resource names. (#3484) 2024-01-05 06:28:07 -05:00
resources Prevent arbitrary file writes with malicious resource names. (#3484) 2024-01-05 06:28:07 -05:00