git.ipfire.org Git - thirdparty/vim.git/commit

author	Christian Brabandt <cb@256bit.org>
	Tue, 15 Jul 2025 19:43:01 +0000 (21:43 +0200)
committer	Christian Brabandt <cb@256bit.org>
	Tue, 15 Jul 2025 19:57:48 +0000 (21:57 +0200)
commit	586294a04179d855c3d1d4ee5ea83931963680b8
tree	6c76f1499cdb427f40a582df4a67a14b759cb985	tree
parent	3f9d2378bd70748fc59e02a402422269bd096492	commit \| diff

patch 9.1.1551: [security]: path traversal issue in zip.vim

Problem:  [security]: path traversal issue in zip.vim (@ax)
Solution: drop leading ../ on write of zipfiles, don't forcefully
          overwrite existing files

A zip plugin which contains filenames with leading '../'  may cause
confusion as to where the content will be extracted.  Let's drop such
things and make sure we use a relative filename instead and don't
forcefully overwrite temporary files. Also, warn the user of such
things.

related: #17733

Signed-off-by: Christian Brabandt <cb@256bit.org>

Filelist		diff \| blob \| blame \| history
runtime/autoload/zip.vim		diff \| blob \| blame \| history
runtime/doc/pi_zip.txt		diff \| blob \| blame \| history
src/po/vim.pot		diff \| blob \| blame \| history
src/testdir/samples/evil.zip	[new file with mode: 0644]	blob
src/testdir/test_plugin_zip.vim		diff \| blob \| blame \| history
src/version.c		diff \| blob \| blame \| history