[PATCH] mcop/debug.cc, unsafe passing of arguments to system() call

Waldo Bastian bastian at kde.org
Tue Dec 3 18:02:26 GMT 2002


[Please CC me in any reply, I am not subscribed]

----------  Forwarded Message  ----------

Subject: [PATCH] unsafe passing of arguments to system() call
Date: Tuesday 03 December 2002 18:53
From: Waldo Bastian <bastian at kde.org>
To: kdemultimedia at kde.org
Cc: security at kde.org

This is supposed to fix it, please review.

(Just using \"%s\" is not enough because msg might contain a " as well)

Cheers,
Waldo
--
bastian at kde.org -=|[ SuSE, The Linux Desktop Experts ]|=- bastian at suse.com

-------------------------------------------------------



-- 
bastian at kde.org -=|[ SuSE, The Linux Desktop Experts ]|=- bastian at suse.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: mcop_debug.diff
Type: text/x-diff
Size: 2020 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/kde-multimedia/attachments/20021203/5672bb6e/attachment.diff>


More information about the kde-multimedia mailing list