On 2019-06-22 10:51:35 +0200, Vincent Lefevre wrote: > execve("/home/vinc17/bin/sh.screen", ["sh", "-c", "less > ''/var/tmp/_.txt''"], 0x564ffe666f40 /* 132 vars */) = 0 > > i.e. the filename is eventually not quoted! > > Here the filename is sanitized, but I'm not sure that this is always > the case (there's a mailcap_sanitize option that can be set to "no", > even though this is strongly discouraged). [...]
After reading the Mutt code, %s is not affected by this mailcap_sanitize option: there is no attempt to sanitize the filename in rfc1524.c, probably because the filename is expected to have been sanitized earlier, but I don't know whether this is always the case. -- Vincent Lefèvre <vinc...@vinc17.net> - Web: <https://www.vinc17.net/> 100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/> Work: CR INRIA - computer arithmetic / AriC project (LIP, ENS-Lyon)