diff options
author | fergus.henderson <fergushenderson@users.noreply.github.com> | 2012-05-03 20:58:24 +0000 |
---|---|---|
committer | fergus.henderson <fergushenderson@users.noreply.github.com> | 2012-05-03 20:58:24 +0000 |
commit | c94b3196d79d917389c63d5f18ae476765f06ea1 (patch) | |
tree | 2b9f3bb41085c5986b52b173da446eef64b71b18 | |
parent | 66d0e7f2234cb779c3f19b743b3f91b05b598f24 (diff) | |
download | distcc-git-c94b3196d79d917389c63d5f18ae476765f06ea1.tar.gz |
Fix for distcc issue 109 <http://code.google.com/p/distcc/issues/detail?id=109>:
Apply a patch from Debian that was forwarded upstream by mandyke.
The patch fixes a potential security problem in pump wrapper
(pump.in). If PYTHONPATH were originally unset or empty, the current working
directory would be added to PYTHONPATH, which is a security risk.
-rwxr-xr-x | pump.in | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -295,7 +295,7 @@ StartIncludeServer() { # of one asterisk) without filename expansion. eval \ "PYTHONOPTIMIZE='$PYTHONOPTIMIZE' " \ - "PYTHONPATH='$pythonpath::$PYTHONPATH' " \ + "PYTHONPATH='$pythonpath${PYTHONPATH:+:$PYTHONPATH}' " \ "'$PYTHON'" \ "'$include_server'" \ --port "'$socket'" \ |