[
https://issues.apache.org/jira/browse/IO-484?focusedWorklogId=692034&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-692034
]
ASF GitHub Bot logged work on IO-484:
-------------------------------------
Author: ASF GitHub Bot
Created on: 07/Dec/21 20:16
Start Date: 07/Dec/21 20:16
Worklog Time Spent: 10m
Work Description: coveralls commented on pull request #310:
URL: https://github.com/apache/commons-io/pull/310#issuecomment-988234812
[](https://coveralls.io/builds/44828978)
Coverage decreased (-0.1%) to 87.655% when pulling
**511e77e4ef493e9bff049c6137f204dac7ab636a on
Marcono1234:IO-484-null-byte-exception** into
**be834471b11a98b42002cc129fc2c07e6a91b95c on apache:master**.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
Issue Time Tracking
-------------------
Worklog Id: (was: 692034)
Time Spent: 20m (was: 10m)
> FilenameUtils should handle embedded null bytes
> -----------------------------------------------
>
> Key: IO-484
> URL: https://issues.apache.org/jira/browse/IO-484
> Project: Commons IO
> Issue Type: Bug
> Components: Utilities
> Affects Versions: 2.4
> Reporter: Kristian Rosenvold
> Assignee: Kristian Rosenvold
> Priority: Major
> Fix For: 2.5
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> embedding nulls in filenames exposes injection vectors if the application
> passes unsanitized data to some functions in FileNameUtils
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
