On Monday 29 October 2007 23:02, Eduard Bloch wrote:
> Yes, yes, but that's more complicated. I just tried to rewrite this
> script in "good Perl" and it's a lot more work to do it right.
>
> Security team: please consider using the attached patch. It is a quick
> fix which uses libstring-shellquot
severity 448437 grave
thanks
Erich Schubert wrote:
> Package: unp
> Version: 1.0.12
> Severity: important
> Tags: security
>
> unp doesn't escape filenames properly. Try this:
>
> touch empty
> zip \`ls\`.zip empty
> unp \`ls\`.zip
>
> and it will give you a directory listing.
>
> This means t
#include
* Florian Weimer [Mon, Oct 29 2007, 11:37:18PM]:
> * Eduard Bloch:
>
> > Security team: please consider using the attached patch. It is a quick
> > fix which uses libstring-shellquote-perl on @ARGV instead of the stupid
> > doublequote protection before.
>
> I'd rather like to avoid int
* Eduard Bloch:
> Security team: please consider using the attached patch. It is a quick
> fix which uses libstring-shellquote-perl on @ARGV instead of the stupid
> doublequote protection before.
I'd rather like to avoid introducing a new dependency in a security
update, but it's probably a bit d
#include
* Florian Weimer [Mon, Oct 29 2007, 03:00:52PM]:
> * Erich Schubert:
>
> > unp doesn't escape filenames properly. Try this:
> >
> > touch empty
> > zip \`ls\`.zip empty
> > unp \`ls\`.zip
> >
> > and it will give you a directory listing.
>
> This should be fixed not by escaping file nam
#include
* Erich Schubert [Mon, Oct 29 2007, 04:09:13PM]:
> Hi,
> > This should be fixed not by escaping file names, but by using Perl's
> > "system" function which takes a list of arguments (and does not invoke
> > the shell).
>
> Yeah, sorry, that was what I meant basically... right now, unp do
Hi,
> This should be fixed not by escaping file names, but by using Perl's
> "system" function which takes a list of arguments (and does not invoke
> the shell).
Yeah, sorry, that was what I meant basically... right now, unp does
something like \"$filename\" which is really naive...
One of the thi
* Erich Schubert:
> unp doesn't escape filenames properly. Try this:
>
> touch empty
> zip \`ls\`.zip empty
> unp \`ls\`.zip
>
> and it will give you a directory listing.
This should be fixed not by escaping file names, but by using Perl's
"system" function which takes a list of arguments (and do
Package: unp
Version: 1.0.12
Severity: important
Tags: security
unp doesn't escape filenames properly. Try this:
touch empty
zip \`ls\`.zip empty
unp \`ls\`.zip
and it will give you a directory listing.
This means that any application using 'unp' for a generic decompression
utility might be vul
9 matches
Mail list logo
