Skip to content

Commit

Permalink
Regex hardening to fix CVE-2018-12356.
Browse files Browse the repository at this point in the history
  • Loading branch information
@PenTesting
PenTesting committed Jun 17, 2018
1 parent 4703d74 commit 5da1adc
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion contrib/verify-commits/gpg.sh
View file
Expand Up @@ -30,7 +30,7 @@ if ! $VALID; then
exit 1
fi
if $VALID && $REVSIG; then
echo "$INPUT" | gpg --trust-model always "$@" | grep "\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$INPUT" | gpg --trust-model always "$@" | grep "^\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$GOODREVSIG"
else
echo "$INPUT" | gpg --trust-model always "$@" 2>/dev/null
Expand Down

0 comments on commit 5da1adc

Please sign in to comment.