hardenedbsd/HardenedBSD
1
0
Fork 0
mirror of https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git synced 2024-11-14 14:21:18 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
b3e7694832
HardenedBSD/usr.bin/patch/pathnames.h
Xin LI 3fd78bfab2 Fix shell injection vulnerability in patch(1) via ed(1) by 
tightening sanity check of the input. [1]

While I'm there also replace ed(1) with red(1) because we do
not need the unrestricted functionality. [2]

Obtained from:	Bitrig [1], DragonFly [2]
Security:	CVE-2015-1418 [1]
2015-08-05 22:04:54 +00:00

13 lines
239 B
C
Raw Blame History

/*-
* Placed in the public domain by Todd C. Miller <Todd.Miller@courtesan.com>
* on July 29, 2003.
*
* $OpenBSD: pathnames.h,v 1.1 2003/07/29 20:10:17 millert Exp $
* $FreeBSD$
*/
#include <paths.h>
#define _PATH_RED "/bin/red"
Reference in New Issue View Git Blame Copy Permalink