Safeguard transport DSN

Created on 29 March 2023, about 2 years ago

Updated 6 May 2023, almost 2 years ago

Problem/Motivation

The transport DSN can be used to execute arbitrary system/shell code by means of the sendmail transport with a custom command. DsnTransport guards against this, however there is a risk that some other code accepts a string from an untrusted source. Even a full admin GUI user should not be allowed to run arbitrary system code.

Proposed resolution

This module should check the DSN string in Mailer::doSend(), just before calling Dsn::fromString. If the protocol is sendmail and the command parameter is set, then it must be one of Settings::get('mailer_sendmail_commands').

Remaining tasks

User interface changes

API changes

Data model changes

📌 Task

Status

Fixed

Version

1.0

Component

Code

Created by

🇬🇧United Kingdom adamps

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @adamps
Status changed to Needs review almost 2 years ago2:07pm 6 May 2023
Open in Jenkins → Open on Drupal.org →
Core: 9.5.x + Environment: PHP 7.4 & MySQL 5.7
last update almost 2 years ago
5 pass
Comment almost 2 years ago →
🇬🇧United Kingdom adamps
Comment almost 2 years ago →
System Message

AdamPS → committed 73093c1d on 1.x
Issue #3351129 by AdamPS: Safeguard transport DSN
Status changed to Fixed almost 2 years ago2:15pm 6 May 2023
Comment almost 2 years ago →
🇬🇧United Kingdom adamps
Comment almost 2 years ago →
System Message
Automatically closed - issue fixed for 2 weeks with no activity.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024