From 6aea0829f8650922f5422f2f2b2e432968d11b9b Mon Sep 17 00:00:00 2001 From: Michael Stahl Date: Wed, 11 Feb 2015 14:42:51 +0100 Subject: tdf#87303: svtools: relax the security a bit for embedded objects CVE-2014-3575 was about updating linked objects, there is no security issue with embedded objects so always allow updating the preview image for them. (regression from d005acae3aa315921f2c331612131626c470bd22) Change-Id: I6e4d013ddf4fbe08c5968c680bbe143dd0473a4b --- svtools/source/misc/embedhlp.cxx | 13 ++++++++++--- 1 file changed, 10 insertions(+), 3 deletions(-) (limited to 'svtools') diff --git a/svtools/source/misc/embedhlp.cxx b/svtools/source/misc/embedhlp.cxx index eb2aea48fd50..5785701f0e89 100644 --- a/svtools/source/misc/embedhlp.cxx +++ b/svtools/source/misc/embedhlp.cxx @@ -44,6 +44,7 @@ #include #include #include +#include #include #include #include @@ -604,15 +605,21 @@ SvStream* EmbeddedObjectRef::GetGraphicStream( bool bUpdate ) const if ( !xStream.is() ) { SAL_INFO( "svtools.misc", "getting stream from object" ); - bool bUserAllowsLinkUpdate(true); + bool bUpdateAllowed(true); const comphelper::EmbeddedObjectContainer* pContainer = GetContainer(); if(pContainer) { - bUserAllowsLinkUpdate = pContainer->getUserAllowsLinkUpdate(); + uno::Reference const xLinkage( + mpImpl->mxObj, uno::UNO_QUERY); + if (xLinkage.is() && xLinkage->isLink()) + { + bUpdateAllowed = pContainer->getUserAllowsLinkUpdate(); + + } } - if(bUserAllowsLinkUpdate) + if (bUpdateAllowed) { // update wanted or no stream in container storage available xStream = GetGraphicReplacementStream(mpImpl->nViewAspect, mpImpl->mxObj, &mpImpl->aMediaType); -- cgit