Merge "Fixed format string vulnerability in reddwarf call to OpenstackException handler"

2013-05-23 21:15:38 +00:00 · 2013-05-23 21:15:38 +00:00 · 9a2c9794a2
commit 9a2c9794a2
parent 8ccc5211a4 4384a2ca7f
1 changed files with 5 additions and 1 deletions
--- a/reddwarf/extensions/mysql/common.py
+++ b/reddwarf/extensions/mysql/common.py
@ -32,7 +32,11 @@ def populate_databases(dbs):
            databases.append(mydb.serialize())
        return databases
    except ValueError as ve:
-        raise exception.BadRequest(str(ve))
+        # str(ve) contains user input and may include '%' which can cause a
+        # format str vulnerability. Escape the '%' to avoid this. This is
+        # okay to do since we're not using dict args here in any case.
+        safe_string = str(ve).replace('%', '%%')
+        raise exception.BadRequest(safe_string)


 def populate_users(users):