[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

gEDA-cvs: pcb.git: branch: master updated (e97a3932e65e936d87f2eb59e3453a9ff4976501)

To: pcb-src-changes@xxxxxxxxxxxxxxxxxxxxx,geda-cvs@xxxxxxxx
Subject: gEDA-cvs: pcb.git: branch: master updated (e97a3932e65e936d87f2eb59e3453a9ff4976501)
From: git@xxxxxxxxxx
Date: Sat, 08 Jan 2011 00:50:57 +0000
Delivered-to: archiver@xxxxxxxx
Delivered-to: geda-cvs@xxxxxxxx
Delivery-date: Fri, 07 Jan 2011 19:51:28 -0500
List-archive: <http://www.seul.org/pipermail/geda-cvs>
List-help: <mailto:geda-cvs-request@moria.seul.org?subject=help>
List-id: gEDA CVS commits mailing list <geda-cvs.moria.seul.org>
List-post: <mailto:geda-cvs@moria.seul.org>
List-subscribe: <http://www.seul.org/cgi-bin/mailman/listinfo/geda-cvs>, <mailto:geda-cvs-request@moria.seul.org?subject=subscribe>
List-unsubscribe: <http://www.seul.org/cgi-bin/mailman/options/geda-cvs>, <mailto:geda-cvs-request@moria.seul.org?subject=unsubscribe>
Reply-to: gEDA CVS commits mailing list <geda-cvs@xxxxxxxxxxxxxx>
Sender: geda-cvs-bounces@xxxxxxxxxxxxxx

The branch, master has been updated
       via  e97a3932e65e936d87f2eb59e3453a9ff4976501 (commit)
      from  c0ec7462facd046414734ebd0a65917f67ddcf74 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.


=========
 Summary
=========

 src/action.c |   11 ++++++-----
 1 files changed, 6 insertions(+), 5 deletions(-)


=================
 Commit Messages
=================

commit e97a3932e65e936d87f2eb59e3453a9ff4976501
Author: DJ Delorie <dj@xxxxxxxxxxx>
Commit: DJ Delorie <dj@xxxxxxxxxxx>

    Fix command-injection bug in Import()
    
    Use "--" before the list of schematics, to prevent the src list
    from containing other gnetlist options (or arbitrary guile code)

:100644 100644 d8e631f... 5acd3fd... M	src/action.c

=========
 Changes
=========

commit e97a3932e65e936d87f2eb59e3453a9ff4976501
Author: DJ Delorie <dj@xxxxxxxxxxx>
Commit: DJ Delorie <dj@xxxxxxxxxxx>

    Fix command-injection bug in Import()
    
    Use "--" before the list of schematics, to prevent the src list
    from containing other gnetlist options (or arbitrary guile code)

diff --git a/src/action.c b/src/action.c
index d8e631f..5acd3fd 100644
--- a/src/action.c
+++ b/src/action.c
@@ -7782,20 +7782,21 @@ ActionImport (int argc, char **argv, int x, int y)
 	return 1;
       }
 
-      cmd = (char **) malloc ((6 + nsources) * sizeof (char *));
+      cmd = (char **) malloc ((7 + nsources) * sizeof (char *));
       cmd[0] =  Settings.GnetlistProgram;
       cmd[1] = "-g";
       cmd[2] = "pcbfwd";
       cmd[3] = "-o";
       cmd[4] = tmpfile;
+      cmd[5] = "--";
       for (i=0; i<nsources; i++)
-	cmd[5+i] = sources[i];
-      cmd[5+nsources] = NULL;
+	cmd[6+i] = sources[i];
+      cmd[6+nsources] = NULL;
 
 #ifdef DEBUG
       printf("ActionImport:  ===========  About to run gnetlist  ============\n");
-      printf("%s %s %s %s %s %s ...\n", 
-	     cmd[0], cmd[1], cmd[2], cmd[3], cmd[4], cmd[5]);
+      printf("%s %s %s %s %s %s %s ...\n", 
+	     cmd[0], cmd[1], cmd[2], cmd[3], cmd[4], cmd[5], cmd[6]);
 #endif
 
       if (pcb_spawnvp (cmd))




_______________________________________________
geda-cvs mailing list
geda-cvs@xxxxxxxxxxxxxx
http://www.seul.org/cgi-bin/mailman/listinfo/geda-cvs

Prev by Author: gEDA-cvs: pcb.git: branch: master updated (c0ec7462facd046414734ebd0a65917f67ddcf74)
Next by Author: gEDA-cvs: pcb.git: branch: master updated (c9e069b19455c6e20b7988b86a4736f6ea0b1bc0)
Previous by thread: gEDA-cvs: pcb.git: branch: master updated (c0ec7462facd046414734ebd0a65917f67ddcf74)
Next by thread: gEDA-cvs: pcb.git: branch: master updated (c9e069b19455c6e20b7988b86a4736f6ea0b1bc0)
Index(es):
- Author
- Thread