diff options
author | markd <markd> | 2005-05-04 13:49:50 +0000 |
---|---|---|
committer | markd <markd> | 2005-05-04 13:49:50 +0000 |
commit | 7f1ed1fac3ec985cccf5ecd9ac90cb880f4a5bba (patch) | |
tree | bb39f0a737ce5ed82e5b6fd345d21961e21b12b0 /www/kdewebdev3/patches | |
parent | 50f8048cc20c98508cd5cdc6e6c6f523a5e736c7 (diff) | |
download | pkgsrc-7f1ed1fac3ec985cccf5ecd9ac90cb880f4a5bba.tar.gz |
The previous Kommander patch was incorrect and still allowed execution
of files served from /tmp.
From http://www.kde.org/info/security/advisory-20050504-1.txt
Bump PKGREVISION.
Diffstat (limited to 'www/kdewebdev3/patches')
-rw-r--r-- | www/kdewebdev3/patches/patch-aa | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/www/kdewebdev3/patches/patch-aa b/www/kdewebdev3/patches/patch-aa index 2c004fa3157..9675cdfe223 100644 --- a/www/kdewebdev3/patches/patch-aa +++ b/www/kdewebdev3/patches/patch-aa @@ -1,4 +1,4 @@ -$NetBSD: patch-aa,v 1.3 2005/04/26 19:46:32 drochner Exp $ +$NetBSD: patch-aa,v 1.4 2005/05/04 13:49:50 markd Exp $ Index: kommander/executor/instance.cpp =================================================================== @@ -36,7 +36,7 @@ diff -u -3 -d -p -r1.49 -r1.49.2.3 + + bool inTemp = false; + for (QStringList::ConstIterator I = tmpDirs.begin(); I != tmpDirs.end(); ++I) -+ if (m_uiFileName.directory().startsWith(*I)) ++ if (m_uiFileName.directory(false).startsWith(*I)) + inTemp = true; + + if (inTemp) |