[Portland-bugs] [Bug 103807] Argument injection in xdg-open open_envvar
bugzilla-daemon at freedesktop.org
bugzilla-daemon at freedesktop.org
Mon May 14 16:45:11 UTC 2018
https://bugs.freedesktop.org/show_bug.cgi?id=103807
--- Comment #14 from Emilio Pozuelo Monfort <pochu27 at gmail.com> ---
(In reply to carnil from comment #5)
> Hi
>
> The autotests/t-xdg-open-url.sh autotest which was introduced with the
> ttps://cgit.freedesktop.org/xdg/xdg-utils/commit/
> ?id=094b73658a4fb11a40924d8df72165b054aac330 commit ('check that $BROWSER
> with %s is safe from shell injection') will need an adjustment after the
> https://cgit.freedesktop.org/xdg/xdg-utils/commit/
> ?id=ce802d71c3466d1dbb24f2fe9b6db82a1f899bcb commit
This needs an update. Do you want a separate bug for it?
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/portland-bugs/attachments/20180514/7a744419/attachment.html>
More information about the Portland-bugs
mailing list