diff options
| author |   Robin H. Johnson <robbat2@gentoo.org> | 2015-08-08 13:49:04 -0700 |
|---|---|---|
| committer | Robin H. Johnson <robbat2@gentoo.org> | 2015-08-08 17:38:18 -0700 |
| commit | 56bd759df1d0c750a065b8c845e93d5dfa6b549d (patch) | |
| tree | 3f91093cdb475e565ae857f1c5a7fd339e2d781e /dev-python/pycadf/files | |
| download | gentoo-56bd759df1d0c750a065b8c845e93d5dfa6b549d.tar.gz gentoo-56bd759df1d0c750a065b8c845e93d5dfa6b549d.tar.bz2 gentoo-56bd759df1d0c750a065b8c845e93d5dfa6b549d.zip | |
proj/gentoo: Initial commit
This commit represents a new era for Gentoo:
Storing the gentoo-x86 tree in Git, as converted from CVS.
This commit is the start of the NEW history.
Any historical data is intended to be grafted onto this point.
Creation process:
1. Take final CVS checkout snapshot
2. Remove ALL ChangeLog* files
3. Transform all Manifests to thin
4. Remove empty Manifests
5. Convert all stale $Header$/$Id$ CVS keywords to non-expanded Git $Id$
5.1. Do not touch files with -kb/-ko keyword flags.
Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
X-Thanks: Alec Warner <antarus@gentoo.org> - did the GSoC 2006 migration tests
X-Thanks: Robin H. Johnson <robbat2@gentoo.org> - infra guy, herding this project
X-Thanks: Nguyen Thai Ngoc Duy <pclouds@gentoo.org> - Former Gentoo developer, wrote Git features for the migration
X-Thanks: Brian Harring <ferringb@gentoo.org> - wrote much python to improve cvs2svn
X-Thanks: Rich Freeman <rich0@gentoo.org> - validation scripts
X-Thanks: Patrick Lauer <patrick@gentoo.org> - Gentoo dev, running new 2014 work in migration
X-Thanks: Michał Górny <mgorny@gentoo.org> - scripts, QA, nagging
X-Thanks: All of other Gentoo developers - many ideas and lots of paint on the bikeshed
Diffstat (limited to 'dev-python/pycadf/files')
| -rw-r--r-- | dev-python/pycadf/files/CVE-2014-4615.patch | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/dev-python/pycadf/files/CVE-2014-4615.patch b/dev-python/pycadf/files/CVE-2014-4615.patch new file mode 100644 index 000000000000..54596a5c2cb3 --- /dev/null +++ b/dev-python/pycadf/files/CVE-2014-4615.patch @@ -0,0 +1,29 @@ +https://review.openstack.org/#/c/94878/ +Owner gordon chung +Project openstack/pycadf +Branch master +Topic bug1321080 +Uploaded May 22, 2014 10:12 PM +Updated May 23, 2014 3:34 AM +Status Merged + +Commit Message: remove token from notifier middleware + +notifier middleware is capturing token and sending it to MQ. this +is not advisable so we should filter it out. + +Change-Id: I11d9f2f23fc3b60c945c33d4d02bd7640d88a083 +Closes-Bug: #1321080 +diff --git a/pycadf/middleware/notifier.py b/pycadf/middleware/notifier.py +index fc921f8..621c8b4 100644 +--- a/pycadf/middleware/notifier.py ++++ b/pycadf/middleware/notifier.py +@@ -88,7 +88,7 @@ + include them. + """ + return dict((k, v) for k, v in six.iteritems(environ) +- if k.isupper()) ++ if k.isupper() and k != 'HTTP_X_AUTH_TOKEN') + + @log_and_ignore_error + def process_request(self, request): |