admin/brew
1
0
Fork 0
Code Issues Packages Projects Releases 6 Wiki Activity

Formula#system: sanitize args before exec

Browse Source 
This prevents passing nested arrays to exec; the same thing is done in
safe_system.

Fixes Homebrew/homebrew#10295.

Signed-off-by: Jack Nagel <jacknagel@gmail.com>
This commit is contained in:
Jack Nagel 2012-02-24 17:23:20 -06:00
parent c0299ad19b
commit a9e6f07732
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Library/Homebrew/formula.rb
View File

@ -448,6 +448,7 @@ protected
rd.close rd.close
$stdout.reopen wr $stdout.reopen wr
$stderr.reopen wr $stderr.reopen wr
args.collect!{|arg| arg.to_s}
exec(cmd, *args) rescue nil exec(cmd, *args) rescue nil
exit! 1 # never gets here unless exec threw or failed exit! 1 # never gets here unless exec threw or failed
end end