blob: c667e60aa84d82788bca20c1f7b67b8d4b013dae (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
$NetBSD: patch-support_envvars-std.in,v 1.1 2012/04/22 19:08:03 spz Exp $
http://svn.apache.org/viewvc?view=revision&revision=1296428 :
Fix insecure handling of LD_LIBRARY_PATH that could lead to the
current working directory to be searched for DSOs
CVE-2012-0883
--- support/envvars-std.in.orig 2006-07-12 03:38:44.000000000 +0000
+++ support/envvars-std.in
@@ -18,7 +18,11 @@
#
# This file is generated from envvars-std.in
#
-@SHLIBPATH_VAR@="@exp_libdir@:$@SHLIBPATH_VAR@"
+if test "x$@SHLIBPATH_VAR@" != "x" ; then
+ @SHLIBPATH_VAR@="@exp_libdir@:$@SHLIBPATH_VAR@"
+else
+ @SHLIBPATH_VAR@="@exp_libdir@"
+fi
export @SHLIBPATH_VAR@
#
@OS_SPECIFIC_VARS@
|
