Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[WIP/DNM] CVE: Fix Receiver malicious tenant
If running as root or with enough privileges, receiver can create a directory outside of the configured TenantHeader. This commit fixes it up by sanitizing the user input and explicity not allowing such behavior. Signed-off-by: Daniel Mellado <dmellado@redhat.com>
- Loading branch information