From owner-cvs-all Tue Dec 5 8:22:17 2000 From owner-cvs-all@FreeBSD.ORG Tue Dec 5 08:22:14 2000 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 6990637B401; Tue, 5 Dec 2000 08:22:14 -0800 (PST) Received: (from knu@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id eB5GMEb10020; Tue, 5 Dec 2000 08:22:14 -0800 (PST) (envelope-from knu) Message-Id: <200012051622.eB5GMEb10020@freefall.freebsd.org> From: Akinori MUSHA Date: Tue, 5 Dec 2000 08:22:14 -0800 (PST) To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: www/en/cgi query-pr.cgi X-FreeBSD-CVS-Branch: HEAD Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG knu 2000/12/05 08:22:14 PST Modified files: en/cgi query-pr.cgi Log: Plug up a big security hole; never ever pass meta characters to shell! Submitted by: Anthony Rubin Revision Changes Path 1.22 +4 -2 www/en/cgi/query-pr.cgi To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message