Not saving whitelist icon paths that reference the parent.

chrome/browser/component_updater/supervised_user_whitelist_installer.cc

Index: chrome/browser/component_updater/supervised_user_whitelist_installer.cc
diff --git a/chrome/browser/component_updater/supervised_user_whitelist_installer.cc b/chrome/browser/component_updater/supervised_user_whitelist_installer.cc
index 7989e954670c5299bc7360235a9be67af803ac1e..83891e582d7dda733714114295811aa9a145deae 100644
--- a/chrome/browser/component_updater/supervised_user_whitelist_installer.cc
+++ b/chrome/browser/component_updater/supervised_user_whitelist_installer.cc
@@ -78,6 +78,9 @@ base::FilePath GetLargeIconPath(const base::DictionaryValue& manifest,
     return base::FilePath();
   if (!base::GetValueAsFilePath(*path_value, &path))
     return base::FilePath();
+  // Path components ("..") are not allowed.
+  if (path.ReferencesParent())
+    return base::FilePath();

[Marc Treib, 2016/03/09 14:50:53]

Probably the same should apply below for the raw whitelist path? Maybe worth
making a helper like "GetSafeFilePath(dict, key)"?

[atanasova, 2016/03/10 10:35:28]

Done.

[Bernhard Bauer, 2016/03/15 09:34:52]

(The raw whitelists are read with ReadFileToString, which already refuses to
load a file that references a parent directory, but it's good to fail early
here.)

 
   return install_dir.Append(path);
 }