summaryrefslogtreecommitdiffstats
path: root/webkit/database
diff options
context:
space:
mode:
Diffstat (limited to 'webkit/database')
-rw-r--r--webkit/database/database_util.cc4
1 files changed, 4 insertions, 0 deletions
diff --git a/webkit/database/database_util.cc b/webkit/database/database_util.cc
index b1ba76a..ae52a5a 100644
--- a/webkit/database/database_util.cc
+++ b/webkit/database/database_util.cc
@@ -52,6 +52,10 @@ FilePath DatabaseUtil::GetFullFilePathForVfsFile(
full_path = FilePath::FromWStringHack(
full_path.ToWStringHack() + UTF16ToWide(sqlite_suffix));
}
+ // Watch out for directory traversal attempts from a compromised renderer.
+ if (full_path.value().find(FILE_PATH_LITERAL("..")) !=
+ FilePath::StringType::npos)
+ return FilePath();
return full_path;
}
generated by cgit v1.1 at 2025-01-16 17:23:00 +0000