httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <br...@organic.com>
Subject Re: WWW Form Bug Report: "support/unescape.c still has shell quoting bug" on Solaris 2.x (fwd)
Date Tue, 28 May 1996 00:39:37 GMT

This seemed pretty reasonable, so I've made the change and committed it.

On Thu, 23 May 1996, Cliff Skolnick wrote:
> no ack sent
> 
> --
> Cliff Skolnick                                      cliff@organic.com
> 
> "They that can give up essential liberty to obtain a little temporary
> safety deserve neither liberty nor safety." -- Benjamin Franklin, 1759
> 
> ---------- Forwarded message ----------
> Date: Thu May 23 17:43:12 1996
> From: ken@sprycom
> To: cliff@organic.com
> Subject: WWW Form Bug Report: "support/unescape.c still has shell quoting bug" on Solaris
2.x
> 
> Submitter: ken@sprycom
> Operating system: Solaris 2.x, version: 
> Version of Apache Used: 1.0.5 and 1.1b2
> Extra Modules used: 
> URL exhibiting problem: 
> 
> Symptoms:
> --
> scripts relying on the "unescape" program in the
> support directory will experience a potential
> security hole.
> 
> Fix:  add \n to the ind(...) string in escape_shell_cmd,
> just like the 1.0.3 -> 1.0.5 patch for other
> instances of escape_shell.
> --
> 
> Backtrace:
> --
> 
> --
> 
> 
> 

--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--
brian@organic.com  |  We're hiring!  http://www.organic.com/Home/Info/Jobs/


Mime
View raw message