diff options
| author | Remco Burema <r.burema@ultimaker.com> | 2022-01-07 21:12:36 +0300 |
|---|---|---|
| committer | Remco Burema <r.burema@ultimaker.com> | 2022-01-07 21:12:36 +0300 |
| commit | c849cf8e8865998487e2b5ba613dda2705767960 (patch) | |
| tree | 941dfdd66ba868d80aa195ea2506752103a2b379 | |
| parent | 25ec58875442cb681135c7f162c88dcdb711f71d (diff) | |
Refuse to listen to QT_PLUGIN_PATH.
We don't need it ourselves, and it's a potentially serious attack vector.
CURA-8475
| -rwxr-xr-x | cura_app.py | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/cura_app.py b/cura_app.py index 57692ec0ae..0a63db9376 100755 --- a/cura_app.py +++ b/cura_app.py @@ -15,6 +15,7 @@ if "" in sys.path: import argparse import faulthandler import os +os.environ["QT_PLUGIN_PATH"] = "" # Security workaround: Don't need it, and introduces an attack vector, so set to nul. from PyQt5.QtNetwork import QSslConfiguration, QSslSocket |