Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[stable24] fix(apps): Fix loading info.xml file #39494

Merged
merged 1 commit into from
Jul 20, 2023
Merged

[stable24] fix(apps): Fix loading info.xml file #39494

merged 1 commit into from
Jul 20, 2023

Conversation

nickvergessen
Copy link
Member

Backport #39490

@nickvergessen
fix(apps): Fix loading info.xml file
ba54cb2 
Ref: https://bugs.php.net/bug.php?id=62577

Signed-off-by: Joas Schilling <coding@schilljs.com>
@nickvergessen nickvergessen added the 3. to review Waiting for reviews label Jul 20, 2023
@nickvergessen nickvergessen self-assigned this Jul 20, 2023
github-advanced-security[bot]
github-advanced-security bot found potential problems Jul 20, 2023
View reviewed changes
lib/private/App/InfoParser.php
@@ -63,10 +63,10 @@
libxml_use_internal_errors(true);
if ((PHP_VERSION_ID < 80000)) {
$loadEntities = libxml_disable_entity_loader(false);
$xml = simplexml_load_file($file);
$xml = simplexml_load_string(file_get_contents($file));

Check failure

Code scanning / Psalm

TaintedFile Error

Detected tainted file handling
lib/private/App/InfoParser.php
libxml_disable_entity_loader($loadEntities);
} else {
$xml = simplexml_load_file($file);
$xml = simplexml_load_string(file_get_contents($file));

Check failure

Code scanning / Psalm

TaintedFile Error

Detected tainted file handling
@blizzz blizzz added 4. to release Ready to be released and/or waiting for tests to finish and removed 3. to review Waiting for reviews labels Jul 20, 2023
@blizzz blizzz merged commit 7d1893e into stable24 Jul 20, 2023
25 of 27 checks passed
@blizzz blizzz deleted the backport/39490/stable24 branch July 20, 2023 11:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@marcelklehr marcelklehr marcelklehr approved these changes

@come-nc come-nc come-nc approved these changes

Assignees

@nickvergessen nickvergessen

Labels
4. to release Ready to be released and/or waiting for tests to finish
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@nickvergessen @marcelklehr @come-nc @blizzz