discourse

github-mirror/discourse

Fork 0

mirror of https://github.com/discourse/discourse.git synced 2024-12-12 08:26:05 +08:00

Commit Graph

Author	SHA1	Message	Date
Alan Guo Xiang Tan	87032e87ea	SECURITY: SSRF protection bypass with IPv4-mapped IPv6 addresses As part of this commit, we've also expanded our list of private IP ranges based on https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml and https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml	2023-03-16 16:25:48 -06:00
Ted Johansson	06db264f24	FIX: Gracefully handle DNS issued from SSRF lookup when inline oneboxing (#19631 ) There is an issue where chat message processing breaks due to unhandles `SocketError` exceptions originating in the SSRF check, specifically in `FinalDestination::Resolver`. This change gives `FinalDestination::SSRFDetector` a new error class to wrap the `SocketError` in, and haves the `RetrieveTitle` class handle that error gracefully.	2022-12-28 10:30:20 +08:00
David Taylor	68b4fe4cf8	SECURITY: Expand and improve SSRF Protections (#18815 ) See https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr Co-authored-by: OsamaSayegh <asooomaasoooma90@gmail.com> Co-authored-by: Daniel Waterworth <me@danielwaterworth.com>	2022-11-01 16:33:17 +00:00

Author

SHA1

Message

Date

Alan Guo Xiang Tan

87032e87ea

SECURITY: SSRF protection bypass with IPv4-mapped IPv6 addresses

As part of this commit, we've also expanded our list of private IP
ranges based on
https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml
and https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml

2023-03-16 16:25:48 -06:00

Ted Johansson

06db264f24

FIX: Gracefully handle DNS issued from SSRF lookup when inline oneboxing (#19631 )

There is an issue where chat message processing breaks due to
unhandles `SocketError` exceptions originating in the SSRF check,
specifically in `FinalDestination::Resolver`.

This change gives `FinalDestination::SSRFDetector` a new error class
to wrap the `SocketError` in, and haves the `RetrieveTitle` class
handle that error gracefully.

2022-12-28 10:30:20 +08:00

David Taylor

68b4fe4cf8

SECURITY: Expand and improve SSRF Protections (#18815 )

See https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr

Co-authored-by: OsamaSayegh <asooomaasoooma90@gmail.com>
Co-authored-by: Daniel Waterworth <me@danielwaterworth.com>

2022-11-01 16:33:17 +00:00

3 Commits