bitwarden/browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser synced 2025-12-17 16:53:34 +00:00
Code Issues Releases Wiki Activity

[PM-9619] Fix broken vault upon saving empty URI (#10037)

Browse Source 
* [PM-9619] Add null check for URI before validating checksum

* [PM-9619] Prevent saving empty string login URIs
This commit is contained in:
Shane Melton
2024-07-09 10:48:46 -07:00
committed by GitHub
parent 0e2c486a38
commit 2fe07f3d8e
2 changed files with 6 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
libs/common/src/vault/models/domain/login.ts
View File

@@ -69,6 +69,11 @@ export class Login extends Domain {
if (this.uris != null) {
view.uris = [];
for (let i = 0; i < this.uris.length; i++) {
// If the uri is null, there is nothing to decrypt or validate
if (this.uris[i].uri == null) {
continue;
}
const uri = await this.uris[i].decrypt(orgId, encKey);
// URIs are shared remotely after decryption
// we need to validate that the string hasn't been changed by a compromised server