spamassassin-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From mmarti...@apache.org
Subject svn commit: r903657 - /spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm
Date Wed, 27 Jan 2010 14:24:09 GMT
Author: mmartinec
Date: Wed Jan 27 14:24:09 2010
New Revision: 903657

URL: http://svn.apache.org/viewvc?rev=903657&view=rev
Log:
Bug 6310 - sa-learn --import gives Insecure dependency in open

Modified:
    spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm

Modified: spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm
URL: http://svn.apache.org/viewvc/spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm?rev=903657&r1=903656&r2=903657&view=diff
==============================================================================
--- spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm (original)
+++ spamassassin/trunk/lib/Mail/SpamAssassin/BayesStore/DBM.pm Wed Jan 27 14:24:09 2010
@@ -1438,6 +1438,9 @@
     # bayes directory
     my $main = $self->{bayes}->{main};
     my $path = $main->sed_path($main->{conf}->{bayes_path});
+
+    # prevent dirname() from tainting the result, it assumes $1 is not tainted
+    local($1,$2,$3);  # Bug 6310
     my $dir = dirname($path);
 
     # make temporary copy since old dbm and new dbm may have same name



Mime
View raw message