|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Daniel Jacobowitz (dmj+
ANDREW.CMU.EDU)Date: Thu Feb 01 2001 - 14:35:28 CST
On Thu, Feb 01, 2001 at 02:20:20PM +0100, Tomasz Kuzniar wrote:
> Hi,
> bug same as provious in man on debian (suse also?).
> Just look:
> mezonbeata$ m4 -G %x%x%x%x
> m4: 40012a48380491e00: No such file or directory
> mezonbeata$
>
> or
>
> mezonbeata$ m4 -G %p
> m4: 0x40012a48: No such file or directory
Well, this is certainly a bug, but:
If anyone is allowing arbitrary options to be passed to m4 in a
priviledged context, they deserve what they get! Read the m4 info
page:
`m4' also has builtin functions for including files, running
shell commands, doing arithmetic, etc.
m4 isn't setuid, and anyone who allows arbitrary filenames to be passed
to it has other problems.
Dan
/--------------------------------\ /--------------------------------\
| Daniel Jacobowitz |__| SCS Class of 2002 |
| Debian GNU/Linux Developer __ Carnegie Mellon University |
| dandebian.org | | dmj+andrew.cmu.edu |
\--------------------------------/ \--------------------------------/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]