1
0
mirror of https://gitlab.com/fdroid/fdroidserver.git synced 2024-11-04 22:40:12 +01:00

Merge branch 'obfusk-master-patch-58664' into 'master'

has_known_vulnerability(): check .so files with version in filename

Closes #915

See merge request fdroid/fdroidserver!977
This commit is contained in:
Jochen Sprickerhof 2021-06-28 18:53:49 +00:00
commit 7101cc863a

View File

@ -641,7 +641,7 @@ def has_known_vulnerability(filename):
files_in_apk = set()
with zipfile.ZipFile(filename) as zf:
for name in zf.namelist():
if name.endswith('libcrypto.so') or name.endswith('libssl.so'):
if name.endswith('.so') and ('libcrypto' in name or 'libssl' in name):
lib = zf.open(name)
while True:
chunk = lib.read(4096)