Last change
on this file since 2619 was
2619,
checked in by andersk, 10 years ago
|
bash: Disable function imports
The upstream fix for CVE-2014-6271 isn’t good enough. Furthermore,
even if they were completely fixed to operate as intended, they are
still a bad idea to begin with. Disable this feature entirely.
|
File size:
497 bytes
|
Rev | Line | |
---|
[2619] | 1 | diff --git a/variables.c b/variables.c |
---|
| 2 | index cdc54bc..74f3a8c 100644 |
---|
| 3 | --- a/variables.c |
---|
| 4 | +++ b/variables.c |
---|
| 5 | @@ -349,7 +349,7 @@ initialize_shell_variables (env, privmode) |
---|
| 6 | |
---|
| 7 | /* If exported function, define it now. Don't import functions from |
---|
| 8 | the environment in privileged mode. */ |
---|
| 9 | - if (privmode == 0 && read_but_dont_execute == 0 && STREQN ("() {", string, 4)) |
---|
| 10 | + if (0) |
---|
| 11 | { |
---|
| 12 | string_length = strlen (string); |
---|
| 13 | temp_string = (char *)xmalloc (3 + string_length + char_index); |
---|
Note: See
TracBrowser
for help on using the repository browser.