Fix for distcc issue 109 <http://code.google.com/p/distcc/issues/detail?id=109>:

Apply a patch from Debian that was forwarded upstream by mandyke. The patch fixes a potential security problem in pump wrapper (pump.in). If PYTHONPATH were originally unset or empty, the current working directory would be added to PYTHONPATH, which is a security risk.
author: fergus.henderson <fergushenderson@users.noreply.github.com> 2012-05-03 20:58:24 +0000
committer: fergus.henderson <fergushenderson@users.noreply.github.com> 2012-05-03 20:58:24 +0000
commit: c94b3196d79d917389c63d5f18ae476765f06ea1 (patch)
tree: 2b9f3bb41085c5986b52b173da446eef64b71b18
parent: 66d0e7f2234cb779c3f19b743b3f91b05b598f24 (diff)
download: distcc-git-c94b3196d79d917389c63d5f18ae476765f06ea1.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/pump.in b/pump.in
index 9d10b04..3a0c7a8 100755
--- a/pump.in
+++ b/pump.in
@@ -295,7 +295,7 @@ StartIncludeServer() {
     # of one asterisk) without filename expansion.
     eval \
       "PYTHONOPTIMIZE='$PYTHONOPTIMIZE' " \
-      "PYTHONPATH='$pythonpath::$PYTHONPATH' " \
+      "PYTHONPATH='$pythonpath${PYTHONPATH:+:$PYTHONPATH}' " \
       "'$PYTHON'"                       \
          "'$include_server'"            \
          --port "'$socket'"             \
author	fergus.henderson <fergushenderson@users.noreply.github.com>	2012-05-03 20:58:24 +0000
committer	fergus.henderson <fergushenderson@users.noreply.github.com>	2012-05-03 20:58:24 +0000
commit	c94b3196d79d917389c63d5f18ae476765f06ea1 (patch)
tree	2b9f3bb41085c5986b52b173da446eef64b71b18
parent	66d0e7f2234cb779c3f19b743b3f91b05b598f24 (diff)
download	distcc-git-c94b3196d79d917389c63d5f18ae476765f06ea1.tar.gz