ubergames/lilium-voyager
0
0
Fork 0
mirror of https://github.com/UberGames/lilium-voyager.git synced 2024-12-12 21:22:14 +00:00
Code Issues Projects Releases Packages Wiki Activity
lilium-voyager/code
History
Zack Middleton 3638f69dff Fix fs_game '..' reading outside of home and base path 
VMs could set fs_game to '..' at anytime to access files outside of home
and base path. fs_game sent by server to clients could also be '..' to
access files outside of home and base path.

'..' was not caught by FS_CheckDirTraversal() as it expects filenames
not a single directory.

I've made fs_game be latched to prevent VMs from changing it with no
good way to validate it before it's used. com_basegame and fs_basegame
are now latched as well.

Additionally, it's now possible to change com_basegame while the engine
is running. game_restart or vid_restart will make it take affect.
com_homepath is now CVAR_PROTECTED to prevent VMs from changing it
to a directory traversal.

This requires my two previous commits for preventing VMs from changing
engine latch cvars and only Cvar_Get fs_game in FS_Startup (so CVAR_INIT
isn't added in serveral other places).

Reported by Noah Metzger (Chomenor).
2018-01-21 06:02:28 -06:00
..
AL 5882 - Update OpenAL Headers to OpenAL Soft 1.15.1 2013-02-17 07:34:41 -06:00
asm Remove unused fpucw from snapvector.asm 2015-07-09 18:35:45 -05:00
autoupdater Use "x86_64" and not "x86-64" like everything else in ioq3. 2017-06-04 02:46:49 -04:00
botlib Make FS_BuildOSPath for botlib.log consistent with typical usage 2017-12-23 17:01:08 -06:00
cgame Fix invalid model frame developer warnings in Team Arena 2017-11-22 20:21:02 -06:00
client Fix fs_game '..' reading outside of home and base path 2018-01-21 06:02:28 -06:00
curl-7.54.0/include Update internal curl to 7.54.0 2017-07-28 16:32:22 +01:00
game fix a few potential buffer overwrite in Game VM 2017-12-16 12:51:34 -06:00
jpeg-8c Mark JPEG lib changes, file provided by Simon McVittie 2012-07-01 18:07:56 +00:00
libogg-1.3.2 Rename (already updated) libogg-1.3.1 to libogg-1.3.2 2017-05-23 11:47:26 -05:00
libs Update internal curl to 7.54.0 2017-07-28 16:32:22 +01:00
libvorbis-1.3.5 Rename (already updated) libvorbis-1.3.4 to libvorbis-1.3.5 2017-05-23 11:47:26 -05:00
null [null/null_glimp.c] Fix up bitrot in null impl 2016-07-26 10:52:15 +01:00
opus-1.1.4 Rename (already updated) opus-1.1 to opus-1.1.4 2017-05-23 11:47:27 -05:00
opusfile-0.8 Fix more maybe-uninitialized warnings in opusfile 2017-07-09 14:01:41 -05:00
q3_ui Correct spelling mistakes. 2017-11-22 01:40:20 -06:00
qcommon Fix fs_game '..' reading outside of home and base path 2018-01-21 06:02:28 -06:00
renderercommon Correct spelling mistakes. 2017-11-22 01:40:20 -06:00
renderergl1 Use standard offsetof facility. Dereferencing a null pointer results 2018-01-21 06:01:50 -06:00
renderergl2 OpenGL2: Restore adding fixed ambient light when HDR is enabled 2017-12-15 17:46:51 -06:00
sdl Load OpenGL ES 1.1 function procs 2017-10-02 04:48:07 -05:00
SDL2/include Update SDL2 to 2.0.4 2016-08-15 22:20:00 -04:00
server Don't register fs_game cvar everywhere just to get the value 2018-01-21 06:02:08 -06:00
sys Correct spelling mistakes. 2017-11-22 01:40:20 -06:00
tools Few LCC memory fixes. 2017-12-15 18:08:23 -06:00
ui Correct spelling mistakes. 2017-11-22 01:40:20 -06:00
zlib drop some useless return statements 2013-05-30 15:43:21 -05:00