First Last Prev Next    This bug is not in your last search results.
Bug 47206 - getMailFromMailOrUid must not execute code on import
getMailFromMailOrUid must not execute code on import
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: univention-lib
UCS 4.3
Other Linux
: P5 normal (vote)
: UCS 4.3-1-errata
Assigned To: Philipp Hahn
Felix Botner
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2018-06-19 14:08 CEST by Philipp Hahn
Modified: 2019-03-07 15:06 CET (History)
1 user (show)

See Also:
What kind of report is it?: Development Internal
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:
hahn: Patch_Available+

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Philipp Hahn univentionstaff 2018-06-19 14:08:44 CEST 
Named file is in univention.lib and gets executed on module load.
It is still used by the old Horde-App.
An should be removed completely in the future.
Comment 1 Philipp Hahn univentionstaff 2018-06-20 05:48:02 CEST 
[4.3-1] 31292e0c65 Bug #47206 lib: Protect getMailFromMailOrUid module import
 base/univention-lib/debian/changelog               |  6 ++++
 base/univention-lib/python/getMailFromMailOrUid.py | 37 ++++++++++++----------
 doc/errata/staging/univention-lib.yaml             | 10 ++++++
 3 files changed, 37 insertions(+), 16 deletions(-)

Package: univention-lib
Version: 7.0.0-12A~4.3.0.201806192207
Branch: ucs_4.3-0
Scope: errata4.3-1

[4.3-1] 6d22346d79 Bug #47206 lib: Protect getMailFromMailOrUid module import YAML
 doc/errata/staging/univention-lib.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
Comment 2 Felix Botner univentionstaff 2018-06-20 11:03:11 CEST 
OK - univention-lib (getMailFromMailOrUid.py)
OK - yaml
Comment 3 Arvid Requate univentionstaff 2018-06-20 13:37:39 CEST 
<http://errata.software-univention.de/ucs/4.3/113.html>
First Last Prev Next    This bug is not in your last search results.