René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"CVE-2023-41040: Blind local file inclusion","articleBody":"This issue is for tracking the public vulnerability CVE-2023-41040:\r\n\r\n\u003e In order to resolve some git references, GitPython reads files from the `.git` directory, in some places the name of the file being read is provided by the user, GitPython doesn't check if this file is located outside the `.git` directory. This allows an attacker to make GitPython read any file from the system.\r\n\r\nFurther details, including example code, are in CVE-2023-41040.\r\n\r\n(I'm opening this issue based on the idea in https://github.com/gitpython-developers/GitPython/issues/1635#issuecomment-1698978394 that it's useful to have issues for these. This CVE has been mentioned in #1635, but if #1636 is merged then #1635 may be closed. #1636 fixes CVE-2023-40590 but does *not* also fix CVE-2023-41040.)","author":{"url":"https://github.com/EliahKagan","@type":"Person","name":"EliahKagan"},"datePublished":"2023-08-31T18:34:26.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":5},"url":"https://github.com/1638/GitPython/issues/1638"}