View | Details | Raw Unified | Return to bug 267429
Collapse All | Expand All

(-)b/security/gsad/files/patch-src_gsad.c (+51 lines)
Added Link Here
1 
--- src/gsad.c.orig	2022-10-29 19:14:08 UTC
2 
+++ src/gsad.c
3 
@@ -480,7 +480,7 @@ init_validator ()
4 
   gvm_validator_add (validator, "asset_name", "(?s)^.*$");
5 
   gvm_validator_add (validator, "asset_type", "^(host|os)$");
6 
   gvm_validator_add (validator, "asset_id",
7 
-                     "^([[:alnum:]-_.:\\/~()']|&)+$");
8 
+                     "^([[:alnum:]\\-_.:\\/~()']|&)+$");
9 
   gvm_validator_add (validator, "auth_algorithm", "^(md5|sha1)$");
10 
   gvm_validator_add (validator, "auth_method", "^(0|1|2)$");
11 
   /* Defined in RFC 2253. */
12 
@@ -595,7 +595,7 @@ init_validator ()
13 
   gvm_validator_add (validator, "list_fname",
14 
                      "^([[:alnum:]_-]|%[%CcDFMmNTtUu])+$");
15 
   /* Used for users, credentials, and scanner login name. */
16 
-  gvm_validator_add (validator, "login", "^[[:alnum:]-_@.]+$");
17 
+  gvm_validator_add (validator, "login", "^[[:alnum:]\\-_@.]+$");
18 
   gvm_validator_add (validator, "lsc_password", "^.*$");
19 
   gvm_validator_add (validator, "max_result", "^[0-9]+$");
20 
   gvm_validator_add (validator, "max_groups", "^-?[0-9]+$");
21 
@@ -605,10 +605,10 @@ init_validator ()
22 
   gvm_validator_add (validator, "note_required", "(?s)^(.)+$");
23 
   gvm_validator_add (validator, "note_id", "^[a-z0-9\\-]+$");
24 
   gvm_validator_add (validator, "override_id", "^[a-z0-9\\-]+$");
25 
-  gvm_validator_add (validator, "name", "^[#-_[:alnum:], \\./]*$");
26 
+  gvm_validator_add (validator, "name", "^[#\\-_[:alnum:], \\./]*$");
27 
   gvm_validator_add (validator, "info_name", "(?s)^.*$");
28 
   gvm_validator_add (validator, "info_type", "(?s)^.*$");
29 
-  gvm_validator_add (validator, "info_id", "^([[:alnum:]-_.:\\/~()']|&)+$");
30 
+  gvm_validator_add (validator, "info_id", "^([[:alnum:]\\-_.:\\/~()']|&)+$");
31 
   gvm_validator_add (validator, "details", "^[0-1]$");
32 
   /* Number is special cased in params_mhd_validate to remove the space. */
33 
   gvm_validator_add (validator, "number", "^ *[0-9]+ *$");
34 
@@ -660,7 +660,7 @@ init_validator ()
35 
     "filter|group|host|info|nvt|note|os|ovaldef|override|permission|port_list|"
36 
     "report|report_format|result|role|scanner|schedule|tag|target|task|ticket|"
37 
     "tls_certificate|user|vuln|)$");
38 
-  gvm_validator_add (validator, "resource_id", "^[[:alnum:]-_.:\\/~]*$");
39 
+  gvm_validator_add (validator, "resource_id", "^[[:alnum:]\\-_.:\\/~]*$");
40 
   gvm_validator_add (validator, "resources_action", "^(|add|set|remove)$");
41 
   gvm_validator_add (
42 
     validator, "optional_resource_type",
43 
@@ -719,7 +719,7 @@ init_validator ()
44 
   gvm_validator_add (validator, "uuid", "^[0-9abcdefABCDEF\\-]{1,40}$");
45 
   gvm_validator_add (validator, "usage_type", "^(audit|policy|scan|)$");
46 
   /* This must be "login" with space and comma. */
47 
-  gvm_validator_add (validator, "users", "^[[:alnum:]-_@., ]*$");
48 
+  gvm_validator_add (validator, "users", "^[[:alnum:]\\-_@., ]*$");
49 
   gvm_validator_add (validator, "x_field", "^[\\[\\]_[:alnum:]]+$");
50 
   gvm_validator_add (validator, "y_fields:name", "^[0-9]+$");
51 
   gvm_validator_add (validator, "y_fields:value", "^[\\[\\]_[:alnum:]]+$");

Return to bug 267429