Issue #12070 has been updated by Daniel Pittman. Status changed from In Topic Branch Pending Review to Merged - Pending Release Target version changed from 2.7.x to 2.7.11
Thanks. Happily, to doesn't look like there was any risk this could be leveraged into a code execution bug or anything like that, since you can embed a then evaluated chunk of Ruby into the regexp that I can identify, but nasty either way. ---------------------------------------- Bug #12070: cron value munging can lead to strange errors https://projects.puppetlabs.com/issues/12070 Author: Stefan Schulte Status: Merged - Pending Release Priority: Normal Assignee: Stefan Schulte Category: cron Target version: 2.7.11 Affected Puppet version: Keywords: Branch: https://github.com/stschulte/puppet/tree/ticket/2.7.x/12070 While reworking the cron type specs i stumbled upon strange error messages <pre> # cat /tmp/test cron { 'test': command => '/bin/true', weekday => '*/e', ensure => present, } # puppet apply /tmp/test.pp Parameter weekday failed: Munging failed for value "*/e" in class weekday: target of repeat operator is not specified: /*\/e/i </pre> In the type code there is the statement <pre> name =~ /#{tmp}/i </pre> Puppet should not trust the user input to not include special regex characters -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
