On Wed, Jan 7, 2009 at 21:49, Peter Stephenson <p.w.stephen...@ntlworld.com> wrote:
> Since the path is still absolute I don't see how this could effect > security, either, except maybe at second hand... if you sanitized the > early part of the path but didn't look for "..", so the component could > end up pointing out of that area, for example. But that doesn't seem to > me to be the shell's problem. I am trying to construct a scenario with softlinks, but I don't think is hurting here either. In any case, thanks for fixing this :) Richard -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
