Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

safer open() when passing arbitrary filename (file in .deb) that may …

…contain shell metachars
  • Loading branch information...
commit 12a9aa8da39fc7375c6d77e81d88195c2b962214 1 parent db1fd4c
@dmacks dmacks authored
Showing with 1 addition and 1 deletion.
  1. +1 −1  perlmod/Fink/Validation.pm
View
2  perlmod/Fink/Validation.pm
@@ -1829,7 +1829,7 @@ sub _validate_dpkg {
# check that compiled python modules files don't self-identify using temp locations
if ($filename =~/\.py[co]$/) {
- if (!-l $File::Find::name and open my $py_file, "strings $File::Find::name |") {
+ if (!-l $File::Find::name and open my $py_file, '|-', 'strings', $File::Find::name) {
while (<$py_file>) {
if (/$pkgbuilddir/) {
&stack_msg($msgs, "Compiled python module points to fink build dir.", $filename);
Please sign in to comment.
Something went wrong with that request. Please try again.