Fix handling of invalid email addresses in headers (#1489092)

12 years ago · fd0fd3b0a0
parent 621a2e7f1c
commit fd0fd3b0a0
4 changed files with 14 additions and 3 deletions
--- a/1
+++ b/1
@ -1,6 +1,7 @@
 CHANGELOG Roundcube Webmail
 ===========================

+- Fix handling of invalid email addresses in headers (#1489092)
 - Added attachment_reminder plugin
 - Fix IMAP connection issue with default_socket_timeout < 0 and imap_timeout < 0 (#1489090)
 - Fix various PHP code bugs found using static analysis (#1489086)
--- a/program/lib/Roundcube/rcube_mime.php
+++ b/program/lib/Roundcube/rcube_mime.php
@ -361,6 +361,11 @@ class rcube_mime
                $address = $m[1];
                $name    = '';
            }
+            // special case (#1489092)
+            else if (preg_match('/(\s*<MAILER-DAEMON>)$/', $val, $m)) {
+                $address = 'MAILER-DAEMON';
+                $name    = substr($val, 0, -strlen($m[1]));
+            }
            else {
                $name = $val;
            }
--- a/program/steps/mail/func.inc
+++ b/program/steps/mail/func.inc
@ -1417,9 +1417,10 @@ function rcmail_address_string($input, $max=null, $linked=false, $addicon=null,
    $name   = $part['name'];
    $mailto = $part['mailto'];
    $string = $part['string'];
+    $valid  = check_email($mailto, false);

    // phishing email prevention (#1488981), e.g. "valid@email.addr <phishing@email.addr>"
-    if (!$show_email && $name && $name != $mailto && strpos($name, '@')) {
+    if (!$show_email && $valid && $name && $name != $mailto && strpos($name, '@')) {
      $name = '';
    }

@ -1435,7 +1436,7 @@ function rcmail_address_string($input, $max=null, $linked=false, $addicon=null,
      // for printing we display all addresses
      continue;
    }
-    else if (check_email($part['mailto'], false)) {
+    else if ($valid) {
      if ($linked) {
        $attrs = array(
           'href' => 'mailto:' . $mailto,
@ -1476,7 +1477,7 @@ function rcmail_address_string($input, $max=null, $linked=false, $addicon=null,
      if ($name)
        $address .= Q($name);
      if ($mailto)
-        $address .= (strlen($address) ? ' ' : '') . sprintf('&lt;%s&gt;', Q($mailto));
+        $address = trim($address . ' ' . Q($name ? sprintf('<%s>', $mailto) : $mailto));
    }

    $address = html::span('adr', $address);
--- a/tests/Framework/Mime.php
+++ b/tests/Framework/Mime.php
@ -39,6 +39,8 @@ class Framework_Mime extends PHPUnit_Framework_TestCase
            19 => 'Test <"test test"@domain.tld>',
            20 => '<"test test"@domain.tld>',
            21 => '"test test"@domain.tld',
+            // invalid (#1489092)
+            22 => '"John Doe @ SomeBusinessName" <MAILER-DAEMON>',
        );

        $results = array(
@ -64,6 +66,8 @@ class Framework_Mime extends PHPUnit_Framework_TestCase
            19 => array(1, 'Test', '"test test"@domain.tld'),
            20 => array(1, '', '"test test"@domain.tld'),
            21 => array(1, '', '"test test"@domain.tld'),
+            // invalid (#1489092)
+            22 => array(1, 'John Doe @ SomeBusinessName', 'MAILER-DAEMON'),
        );

        foreach ($headers as $idx => $header) {