From 1ff90056d39352016bce53dbd69f2ed9f41c92fd Mon Sep 17 00:00:00 2001
From: Sebastian Hildebrandt <hildebrandt@plus-innovations.com>
Date: Tue, 16 Mar 2021 12:01:39 +0100
Subject: [PATCH] inetLatency() ineChecksite() schema validation

---
 CHANGELOG.md          |  1 +
 docs/history.html     |  5 +++++
 docs/index.html       |  2 +-
 docs/security.html    |  3 +++
 docs/v4/history.html  | 10 ++++++++++
 docs/v4/index.html    |  2 +-
 docs/v4/security.html |  3 +++
 lib/internet.js       |  4 ++--
 8 files changed, 26 insertions(+), 4 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9912deb..8fdc899 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -77,6 +77,7 @@ For major (breaking) changes - **version 4, 3 and 2** - see end of page.
 
 | Version        | Date           | Comment  |
 | -------------- | -------------- | -------- |
+| 5.6.7          | 2021-03-16     | `inetLatency()` `ineChecksite()` schema validation |
 | 5.6.6          | 2021-03-16     | code refactoring |
 | 5.6.5          | 2021-03-15     | `cpuTemperature()` fix (linux) |
 | 5.6.4          | 2021-03-15     | `sanitizeShellString()` and other security improvements |
diff --git a/docs/history.html b/docs/history.html
index a5fd53c..702e07c 100644
--- a/docs/history.html
+++ b/docs/history.html
@@ -56,6 +56,11 @@
                   </tr>
                 </thead>
                 <tbody>
+                  <tr>
+                    <th scope="row">5.6.8</th>
+                    <td>2021-03-16</td>
+                    <td><span class="code">inetLatency()</span> <span class="code">inetChecksite()</span> schema avlidation</td>
+                  </tr>
                   <tr>
                     <th scope="row">5.6.6</th>
                     <td>2021-03-16</td>
diff --git a/docs/index.html b/docs/index.html
index ac465fb..7c6f89f 100644
--- a/docs/index.html
+++ b/docs/index.html
@@ -170,7 +170,7 @@
       <img class="logo" src="assets/logo.png">
       <div class="title">systeminformation</div>
       <div class="subtitle"><span id="typed"></span>&nbsp;</div>
-      <div class="version">New Version: <span id="version">5.6.6</span></div>
+      <div class="version">New Version: <span id="version">5.6.7</span></div>
       <button class="btn btn-light" onclick="location.href='https://github.com/sebhildebrandt/systeminformation'">View on Github <i class=" fab fa-github"></i></button>
     </div>
     <div class="down">
diff --git a/docs/security.html b/docs/security.html
index 3eeb8a8..590c081 100644
--- a/docs/security.html
+++ b/docs/security.html
@@ -43,6 +43,9 @@
           <div class="col-12 sectionheader">
             <div class="title">Security Advisories</div>
             <div class="text">
+              <h2>Passing User Paramters to Systeminformation</h2>
+              <p><span class="bold">Be aware</span> to not use <span class="code">inetLatency()</span>, <span class="code">inetChecksite()</span>, <span class="code">services()</span>, <span class="code">processLoad()</span> with arbitrary untrusted user input! We are doing a lot of input sanitation for those functions in this package but we cannot handle all cases!</p>
+
               <h2>Command Injection Vulnerability</h2>
               <p><span class="bold">Affected versions:</span>
                 &lt; 5.6.4 and &lt; 4.34.17<br>
diff --git a/docs/v4/history.html b/docs/v4/history.html
index 55aa575..2aedaf7 100644
--- a/docs/v4/history.html
+++ b/docs/v4/history.html
@@ -83,6 +83,16 @@
                   </tr>
                 </thead>
                 <tbody>
+                  <tr>
+                    <th scope="row">4.34.19</th>
+                    <td>2021-03-16</td>
+                    <td><span class="code">inetLatency()</span> <span class="code">inetChecksite()</span> schema avlidation</td>
+                  </tr>
+                  <tr>
+                    <th scope="row">4.34.18</th>
+                    <td>2021-03-16</td>
+                    <td>code refactoring</td>
+                  </tr>
                   <tr>
                     <th scope="row">4.34.17</th>
                     <td>2021-03-14</td>
diff --git a/docs/v4/index.html b/docs/v4/index.html
index 2b08555..9bedc4b 100644
--- a/docs/v4/index.html
+++ b/docs/v4/index.html
@@ -170,7 +170,7 @@
       <div class="title">systeminformation </div>
       <div class="subtitle"><span id="typed"></span>&nbsp;</div>
       <div class="version larger">Version 4 documentation</div>
-      <div class="version">Current Version: <span id="version">4.34.17</span></div>
+      <div class="version">Current Version: <span id="version">4.34.19</span></div>
       <button class="btn btn-light" onclick="location.href='https://github.com/sebhildebrandt/systeminformation'">View on Github <i class=" fab fa-github"></i></button>
     </div>
     <div class="down">
diff --git a/docs/v4/security.html b/docs/v4/security.html
index 3907e78..d7e8db4 100644
--- a/docs/v4/security.html
+++ b/docs/v4/security.html
@@ -42,6 +42,9 @@
           <div class="col-12 sectionheader">
             <div class="title">Security Advisories</div>
             <div class="text">
+              <h2>Passing User Paramters to Systeminformation</h2>
+              <p><span class="bold">Be aware</span> to not use <span class="code">inetLatency()</span>, <span class="code">inetChecksite()</span>, <span class="code">services()</span>, <span class="code">processLoad()</span> with arbitrary untrusted user input! We are doing a lot of input sanitation for those functions in this package but we cannot handle all cases!</p>
+
               <h2>Command Injection Vulnerability</h2>
               <p><span class="bold">Affected versions:</span>
                 &lt; 4.34.17<br>
diff --git a/lib/internet.js b/lib/internet.js
index 23e6d6f..cc996e1 100644
--- a/lib/internet.js
+++ b/lib/internet.js
@@ -58,7 +58,7 @@ function inetChecksite(url, callback) {
       try {
         if (urlSanitized && !util.isPrototypePolluted()) {
           urlSanitized.__proto__.startsWith = util.stringStartWith;
-          if (urlSanitized.startsWith('file:')) {
+          if (urlSanitized.startsWith('file:') || urlSanitized.startsWith('gopher:') || urlSanitized.startsWith('telnet:') || urlSanitized.startsWith('mailto:') || urlSanitized.startsWith('news:') || urlSanitized.startsWith('nntp:')) {
             if (callback) { callback(result); }
             return resolve(result);
           }
@@ -153,7 +153,7 @@ function inetLatency(host, callback) {
         }
       }
       hostSanitized.__proto__.startsWith = util.stringStartWith;
-      if (hostSanitized.startsWith('file:')) {
+      if (hostSanitized.startsWith('file:') || hostSanitized.startsWith('gopher:') || hostSanitized.startsWith('telnet:') || hostSanitized.startsWith('mailto:') || hostSanitized.startsWith('news:') || hostSanitized.startsWith('nntp:')) {
         if (callback) { callback(null); }
         return resolve(null);
       }