** Changed in: mahara/1.5
Status: Fix Committed = Fix Released
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contrib members
https://bugs.launchpad.net/bugs/1055239
** Changed in: mahara/1.5
Status: In Progress = Fix Committed
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription
We have investigated a serious security bug in Mahara 1.5.x Series which
allows to upload virus infected file. This loophole/bug allows to upload
the infected file without scanning it and from Mahara user interface
this gives an impression that the file was scanned successfully.
The issue is
Attached the uploadmanager.php which we used for debugging.
PHP debuggging without fix 2 files uploaded
In the Loop isset($inputindex) :
$tmpfile: NULL
In the Loop is_array($file) is_uploaded_file($tmpname)
$fullpath: array(2) { [0]= string(14) /tmp/phpDdqaTc [1]= string(14)
/tmp/phpM4aRv1 }
** Information type changed from Public to Private Security
** Information type changed from Private Security to Public Security
** Information type changed from Public Security to Private Security
--
You received this bug notification because you are a member of Mahara
Contributors, which is
** Changed in: mahara
Status: Confirmed = Fix Committed
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/1055239
Title:
ClamAV doesn't support scanning multifile uploads
Status in
https://reviews.mahara.org/1717
--
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/1055239
Title:
ClamAV doesn't support scanning multifile uploads
Status in Mahara ePortfolio:
Confirmed
Bug
7 matches
Mail list logo
