Qubes/core-admin-client
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Stop leaking terminal escapes via stderr

Browse Source 
This restores Qubes R3.2 behavior

Before this patch, the following:

    qvm-run -p sys-firewall 'echo -e "\e[0;46mcyan!" >&2' | wc -l

leaks the escape sequences through to the dom0 terminal via stderr,
in this case demonstrated by the ability to change the text color while
it should be fixed to red.

This can also be abused with xterm reporting sequences to cause input
to be sent to the dom0 terminal. This is potentially a security issue.
This commit is contained in:
Jean-Philippe Ouellet 2017-11-20 23:32:32 -05:00
parent afe4eef15f
commit 87230fc042
No known key found for this signature in database
GPG Key ID: 4747332C27533622
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
qubesadmin/app.py
View File

@ -26,6 +26,7 @@ import os
import shlex
import socket
import subprocess
import sys
import logging
@ -505,7 +506,9 @@ class QubesLocal(QubesBase):
pass
qrexec_opts = ['-d', dest]
if filter_esc:
qrexec_opts.extend(['-t', '-T'])
qrexec_opts.extend(['-t'])
if filter_esc or os.isatty(sys.stderr.fileno()):
qrexec_opts.extend(['-T'])
if localcmd:
qrexec_opts.extend(['-l', localcmd])
if user is None: