Merge remote-tracking branch 'upstream/master' into bugfix/remotes-pathy-fluid

2025-08-27 07:24:58 +03:00 · 2022-11-07 10:46:55 +01:00 · 2022-11-07 10:46:55 +01:00 · 6e62d7bec6
commit 6e62d7bec6
parent e9cd7e3032 e91b47a226
2 changed files with 20 additions and 1 deletions
--- a/spacy/cli/project/remote_storage.py
+++ b/spacy/cli/project/remote_storage.py
@ -11,6 +11,7 @@ from .._util import ensure_pathy, make_tempdir, _file_exists
 from ...util import get_minor_version, ENV_VARS, check_bool_env_var
 from ...git_info import GIT_VERSION
 from ... import about
+from ...errors import Errors

 if TYPE_CHECKING:
    from pathy import FluidPath  # noqa: F401
@ -83,7 +84,23 @@ class RemoteStorage:
                with tarfile.open(tar_loc, mode=mode_string) as tar_file:
                    # This requires that the path is added correctly, relative
                    # to root. This is how we set things up in push()
-                    tar_file.extractall(self.root)
+
+                    # Disallow paths outside the current directory for the tar
+                    # file (CVE-2007-4559, directory traversal vulnerability)
+                    def is_within_directory(directory, target):
+                        abs_directory = os.path.abspath(directory)
+                        abs_target = os.path.abspath(target)
+                        prefix = os.path.commonprefix([abs_directory, abs_target])
+                        return prefix == abs_directory
+
+                    def safe_extract(tar, path):
+                        for member in tar.getmembers():
+                            member_path = os.path.join(path, member.name)
+                            if not is_within_directory(path, member_path):
+                                raise ValueError(Errors.E852)
+                        tar.extractall(path)
+
+                    safe_extract(tar_file, self.root)
        return url

    def find(
--- a/spacy/errors.py
+++ b/spacy/errors.py
@ -544,6 +544,8 @@ class Errors(metaclass=ErrorsWithCodes):
            "during training, make sure to include it in 'annotating components'")

    # New errors added in v3.x
+    E852 = ("The tar file pulled from the remote attempted an unsafe path "
+            "traversal.")
    E853 = ("Unsupported component factory name '{name}'. The character '.' is "
            "not permitted in factory names.")
    E854 = ("Unable to set doc.ents. Check that the 'ents_filter' does not "