Unserialize untrusted data when importing skins
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Mahara |
Fix Released
|
Critical
|
Unassigned | ||
15.04 |
Fix Released
|
Critical
|
Unassigned | ||
15.10 |
Fix Released
|
Critical
|
Son Nguyen | ||
16.04 |
Fix Released
|
Critical
|
Unassigned |
Bug Description
Version: 1.10, 15.04. 15.10, master
Platform: any
There is a unserialize vulnerability in skin import function
see line 200 in htdocs/
When importing the attached skin, you will see the error:
[WAR] ce (lib/web.php:3684) Object of class __PHP_Incomplet
Call stack (most recent first):
log_message("Object of class __PHP_Incomplet
error(4096, "Object of class __PHP_Incomplet
clean_css(
importskinform_
call_user_
Pieform-
Pieform:
pieform(array(size 4)) at /var/www/
CVE References
no longer affects: | mahara/1.9 |
no longer affects: | mahara/1.10 |
Changed in mahara: | |
milestone: | 16.04.1 → 16.10.0 |
Changed in mahara: | |
status: | Confirmed → Fix Committed |
information type: | Private Security → Public Security |
Changed in mahara: | |
status: | Fix Committed → Fix Released |
Changed in mahara: | |
assignee: | Son Nguyen (ngson2000) → sa (bbbrrr800) |
Changed in mahara: | |
assignee: | sa (bbbrrr800) → nobody |
https:/ /reviews. mahara. org/#/c/ 5579/