« Previous | Next » 

Revision f95c81bf

IDf95c81bf21c177f7e6a2c53ea0613034326329bd

Added by Iustin Pop almost 13 years ago

Security issue: add validation of script names

This patch unifies the search for external script to always go through
utils.FindFile and implements in that function a restriction on valid
chars in file names and (additionally) that the passed name is the
basename of the final (absolute) name.

Signed-off-by: Iustin Pop <>
Reviewed-by: Michael Hanselmann <>

Files

  • added
  • modified
  • copied
  • renamed
  • deleted

View differences