slitaz-forge rev 720 tip
Fix critical vulnerability floppy web tool (again)
| author | Pascal Bellard <pascal.bellard@slitaz.org> |
|---|---|
| date | Sat Aug 23 15:56:52 2025 +0000 (4 weeks ago) |
| parents | dfe86fa9414f |
| children | |
| files | mirror/floppies/builder/index.php |
line diff
1.1 --- a/mirror/floppies/builder/index.php Sat Aug 23 14:59:41 2025 +0000 1.2 +++ b/mirror/floppies/builder/index.php Sat Aug 23 15:56:52 2025 +0000 1.3 @@ -44,9 +44,9 @@ 1.4 sprintf("fd%03d.img",$_GET['n'])); 1.5 $cmd = "cat /tmp/".$_GET['id']."/fd"; 1.6 if ($_GET['s'] != 0) { 1.7 - $cmd .= " /dev/zero | dd count=1 bs=".$_GET['s']; 1.8 + $cmd .= " /dev/zero | dd count=1 bs=".preg_replace("([^\dbBkKmMgG])", '', $_GET['s']); 1.9 if ($_GET['n'] > 1) 1.10 - $cmd .= " skip=".($_GET['n']-1); 1.11 + $cmd .= " skip=".preg_replace("([^\d])", '', $_GET['n'])-1; 1.12 } 1.13 echo `$cmd 2> /dev/null`; 1.14 exit;