mike/systeminformation
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

adapted security update (prototype pollution prevention)

Browse Source
This commit is contained in:
Sebastian Hildebrandt 2020-11-26 18:15:15 +01:00
parent 7b46935058
commit 8113ff0e87
8 changed files with 47 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
CHANGELOG.md
View File

@ -30,6 +30,7 @@ For major (breaking) changes - version 3 and 2 see end of page.
| Version | Date | Comment | | Version | Date | Comment |
| -------------- | -------------- | -------- | | -------------- | -------------- | -------- |
| 4.30.5 | 2020-11-26 | adapted security update (prototype pollution prevention) |
| 4.30.4 | 2020-11-25 | reverted Object.freeze because it broke some projects | | 4.30.4 | 2020-11-25 | reverted Object.freeze because it broke some projects |
| 4.30.3 | 2020-11-25 | security update (prototype pollution prevention) Object.freeze | | 4.30.3 | 2020-11-25 | security update (prototype pollution prevention) Object.freeze |
| 4.30.2 | 2020-11-25 | security update (prototype pollution prevention) | | 4.30.2 | 2020-11-25 | security update (prototype pollution prevention) |

5
docs/history.html
View File

@ -83,6 +83,11 @@
</tr> </tr>
</thead> </thead>
<tbody> <tbody>
<tr>
<th scope="row">4.30.5</th>
<td>2020-11-26</td>
<td>adapted security update (prototype pollution prevention)</td>
</tr>
<tr> <tr>
<th scope="row">4.30.4</th> <th scope="row">4.30.4</th>
<td>2020-11-25</td> <td>2020-11-25</td>

2
docs/index.html
View File

@ -168,7 +168,7 @@
<img class="logo" src="assets/logo.png"> <img class="logo" src="assets/logo.png">
<div class="title">systeminformation</div> <div class="title">systeminformation</div>
<div class="subtitle"><span id="typed"></span></div> <div class="subtitle"><span id="typed"></span></div>
<div class="version">Current Version: <span id="version">4.30.4</span></div> <div class="version">Current Version: <span id="version">4.30.5</span></div>
<button class="btn btn-light" onclick="location.href='https://github.com/sebhildebrandt/systeminformation'">View on Github <i class=" fab fa-github"></i></button> <button class="btn btn-light" onclick="location.href='https://github.com/sebhildebrandt/systeminformation'">View on Github <i class=" fab fa-github"></i></button>
</div> </div>
<div class="down"> <div class="down">

3
lib/index.js
View File

@ -21,9 +21,6 @@
// Dependencies // Dependencies
// ---------------------------------------------------------------------------------- // ----------------------------------------------------------------------------------
// Object.freeze(String.prototype);
// Object.freeze(Object.prototype);
const lib_version = require('../package.json').version; const lib_version = require('../package.json').version;
const util = require('./util'); const util = require('./util');
const system = require('./system'); const system = require('./system');

1
lib/internet.js
View File

@ -40,6 +40,7 @@ function inetChecksite(url, callback) {
s[i] === ' ' || s[i] === ' ' ||
s[i] === '{' || s[i] === '{' ||
s[i] === '}')) { s[i] === '}')) {
s[i].__proto__.toLowerCase = util.stringToLower;
const sl = s[i].toLowerCase(); const sl = s[i].toLowerCase();
if (sl && sl[0] && !sl[1]) { if (sl && sl[0] && !sl[1]) {
urlSanitized = urlSanitized + sl[0]; urlSanitized = urlSanitized + sl[0];

9
lib/network.js
View File

@ -1040,8 +1040,13 @@ function networkStatsSingle(iface) {
return new Promise((resolve) => { return new Promise((resolve) => {
process.nextTick(() => { process.nextTick(() => {
let ifaceSanitized = '';
const ifaceSanitized = util.isPrototypePolluted() ? '---' : util.sanitizeShellString(iface); const s = util.isPrototypePolluted() ? '---' : util.sanitizeShellString(iface);
for (let i = 0; i <= 2000; i++) {
if (!(s[i] === undefined)) {
ifaceSanitized = ifaceSanitized + s[i];
}
}
let result = { let result = {
iface: ifaceSanitized, iface: ifaceSanitized,

13
lib/processes.js
View File

@ -98,7 +98,18 @@ function services(srv, callback) {
return new Promise((resolve) => { return new Promise((resolve) => {
process.nextTick(() => { process.nextTick(() => {
if (srv) { if (srv) {
let srvString = util.sanitizeShellString(srv); let srvString = '';
srvString.__proto__.toLowerCase = util.stringToLower;
srvString.__proto__.replace = util.stringReplace;
srvString.__proto__.trim = util.stringTrim;
const s = util.sanitizeShellString(srv);
for (let i = 0; i <= 2000; i++) {
if (!(s[i] === undefined)) {
srvString = srvString + s[i];
}
}
srvString = srvString.trim().toLowerCase().replace(/, /g, '|').replace(/,+/g, '|'); srvString = srvString.trim().toLowerCase().replace(/, /g, '|').replace(/,+/g, '|');
if (srvString === '') { if (srvString === '') {
srvString = '*'; srvString = '*';

20
lib/util.js
View File

@ -48,6 +48,13 @@ function toInt(value) {
return result; return result;
} }
const stringReplace = new String().replace;
const stringToLower = new String().toLowerCase;
const stringToString = new String().toString;
const stringSubstr = new String().substr;
const stringTrim = new String().trim;
function isFunction(functionToCheck) { function isFunction(functionToCheck) {
let getType = {}; let getType = {};
return functionToCheck && getType.toString.call(functionToCheck) === '[object Function]'; return functionToCheck && getType.toString.call(functionToCheck) === '[object Function]';
@ -523,6 +530,12 @@ function isPrototypePolluted() {
const s = '1234567890abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ' const s = '1234567890abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'
let notPolluted = true; let notPolluted = true;
let st = ''; let st = '';
st.__proto__.replace = stringReplace;
st.__proto__.toLowerCase = stringToLower;
st.__proto__.toString = stringToString;
st.__proto__.substr = stringSubstr;
notPolluted = notPolluted || !(s.length === 62) notPolluted = notPolluted || !(s.length === 62)
const ms = Date.now(); const ms = Date.now();
if (typeof ms === 'number' && ms > 1600000000000) { if (typeof ms === 'number' && ms > 1600000000000) {
@ -542,6 +555,7 @@ function isPrototypePolluted() {
// string manipulation // string manipulation
let p = Math.random() * l * 0.9999999999; let p = Math.random() * l * 0.9999999999;
let stm = st.substr(0, p) + ' ' + st.substr(p, 2000); let stm = st.substr(0, p) + ' ' + st.substr(p, 2000);
stm.__proto__.replace = stringReplace;
let sto = stm.replace(/ /g, ''); let sto = stm.replace(/ /g, '');
notPolluted = notPolluted && st === sto; notPolluted = notPolluted && st === sto;
p = Math.random() * l * 0.9999999999; p = Math.random() * l * 0.9999999999;
@ -562,6 +576,7 @@ function isPrototypePolluted() {
notPolluted = notPolluted && (stl.length === l) && stl[l - 1] && !(stl[l]) notPolluted = notPolluted && (stl.length === l) && stl[l - 1] && !(stl[l])
for (let i = 0; i < l; i++) { for (let i = 0; i < l; i++) {
const s1 = st[i]; const s1 = st[i];
s1.__proto__.toLowerCase = stringToLower;
const s2 = stl ? stl[i] : ''; const s2 = stl ? stl[i] : '';
const s1l = s1.toLowerCase(); const s1l = s1.toLowerCase();
notPolluted = notPolluted && s1l[0] === s2 && s1l[0] && !(s1l[1]); notPolluted = notPolluted && s1l[0] === s2 && s1l[0] && !(s1l[1]);
@ -806,3 +821,8 @@ exports.isRaspbian = isRaspbian;
exports.sanitizeShellString = sanitizeShellString; exports.sanitizeShellString = sanitizeShellString;
exports.isPrototypePolluted = isPrototypePolluted; exports.isPrototypePolluted = isPrototypePolluted;
exports.decodePiCpuinfo = decodePiCpuinfo; exports.decodePiCpuinfo = decodePiCpuinfo;
exports.stringReplace = stringReplace;
exports.stringToLower = stringToLower;
exports.stringToString = stringToString;
exports.stringSubstr = stringSubstr;
exports.stringTrim = stringTrim;