bug#59817: [PATCH] Fix etags local command injection vulnerability

bug-gnu-emacs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#59817: [PATCH] Fix etags local command injection vulnerability

From:	lux
Subject:	bug#59817: [PATCH] Fix etags local command injection vulnerability
Date:	Tue, 6 Dec 2022 15:48:10 +0800

On Mon, 05 Dec 2022 14:34:58 +0200
Eli Zaretskii <eliz@gnu.org> wrote:

> There's no reason to try detecting which characters are dangerous and
> which aren't.  We should instead quote all the file names that come
> from outside of the program, so that what's inside the quotes is
> interpreted verbatim.

Thanks, this is new patch.

0001-Fix-etags-local-command-injection-vulnerability.patch
Description: Text Data

[Prev in Thread]

Current Thread

[Next in Thread]

bug#59817: [PATCH] Fix etags local command injection vulnerability, lux, 2022/12/04
- bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/04
  - bug#59817: [PATCH] Fix etags local command injection vulnerability, Stefan Kangas, 2022/12/04
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/04
  - Message not available
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/05
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, lux <=
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, lux, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Francesco Potortì, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Francesco Potortì, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, lux, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Andreas Schwab, 2022/12/06
    - bug#59817: [PATCH] Fix etags local command injection vulnerability, Eli Zaretskii, 2022/12/06
- bug#59817: [PATCH] Fix etags local command injection vulnerability, lux, 2022/12/04

Prev by Date: bug#59816: [PATCH]: bug#59816: 29.0.60; c++-ts-mode handles one-line comments badly
Next by Date: bug#59853: 30.0.50; tree-sitter modes have unexpected beginning-of-defun behavior
Previous by thread: bug#59817: [PATCH] Fix etags local command injection vulnerability
Next by thread: bug#59817: [PATCH] Fix etags local command injection vulnerability
Index(es):
- Date
- Thread