Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Backports:SLE-15-SP3
zabbix
zabbix-CVE-2020-15803.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File zabbix-CVE-2020-15803.patch of Package zabbix
Index: frontends/php/include/classes/screens/CScreenUrl.php =================================================================== --- frontends/php/include/classes/screens/CScreenUrl.php.orig 2020-04-27 17:10:48.000000000 +0200 +++ frontends/php/include/classes/screens/CScreenUrl.php 2020-07-18 23:31:10.194774417 +0200 @@ -29,18 +29,10 @@ class CScreenUrl extends CScreenBase { public function get() { // prevent from resolving macros in configuration page if ($this->mode != SCREEN_MODE_PREVIEW && $this->mode != SCREEN_MODE_SLIDESHOW) { - return $this->getOutput( - CHtmlUrlValidator::validate($this->screenitem['url'], false) - ? new CIFrame($this->screenitem['url'], $this->screenitem['width'], $this->screenitem['height'], - 'auto') - : makeMessageBox(false, [[ - 'type' => 'error', - 'message' => _s('Provided URL "%1$s" is invalid.', $this->screenitem['url']) - ]] - ) - ); + return $this->getOutput($this->prepareElement()); } - elseif ($this->screenitem['dynamic'] == SCREEN_DYNAMIC_ITEM && $this->hostid == 0) { + + if ($this->screenitem['dynamic'] == SCREEN_DYNAMIC_ITEM && $this->hostid == 0) { return $this->getOutput((new CTableInfo())->setNoDataMessage(_('No host selected.'))); } @@ -54,14 +46,28 @@ class CScreenUrl extends CScreenBase { $this->screenitem['url'] = $url ? $url : $this->screenitem['url']; - return $this->getOutput( - CHtmlUrlValidator::validate($this->screenitem['url'], false) - ? new CIFrame($this->screenitem['url'], $this->screenitem['width'], $this->screenitem['height'], 'auto') - : makeMessageBox(false, [[ - 'type' => 'error', - 'message' => _s('Provided URL "%1$s" is invalid.', $this->screenitem['url']) - ]] - ) - ); + return $this->getOutput($this->prepareElement()); + } + + /** + * @return CTag + */ + public function prepareElement() { + if (CHtmlUrlValidator::validate($this->screenitem['url'], false)) { + $item = new CIFrame($this->screenitem['url'], $this->screenitem['width'], $this->screenitem['height'], + 'auto' + ); + + if (ZBX_IFRAME_SANDBOX !== false) { + $item->setAttribute('sandbox', ZBX_IFRAME_SANDBOX); + } + + return $item; + } + + return makeMessageBox(false, [[ + 'type' => 'error', + 'message' => _s('Provided URL "%1$s" is invalid.', $this->screenitem['url']) + ]]); } }
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor
