[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] Fix ob-latex.el command injection vulnerability.

From: Max Nikulin
Subject: Re: [PATCH] Fix ob-latex.el command injection vulnerability.
Date: Tue, 7 Mar 2023 22:31:53 +0700
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.7.1

On 06/03/2023 10:17, lux wrote:
On Sat, 2023-02-18 at 11:43 +0000, Ihor Radchenko wrote:

I think should be (rename-file img-out out-file t)

Fixed, thank you.

There are a couple more mv shell commands in ob-latex.el. It would be nice to fix them as well. Sorry, I have not checked it earlier. Are you still interested in this topic? I hope, you already have examples that can be used to quickly test if modified code works as expected.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]