[ruby-cvs:68530] nobu:r61349 (trunk): Fixed command Injection

nobu at ruby-lang.org nobu at ruby-lang.org
Wed Dec 20 13:18:31 JST 2017


nobu	2017-12-20 13:18:31 +0900 (Wed, 20 Dec 2017)

  New Revision: 61349

  https://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=61349

  Log:
    Fixed command Injection
    
    * resolv.rb (Resolv::Hosts#lazy_initialize): fixed potential
      command Injection in Hosts::new() by use of Kernel#open.
      [Fix GH-1777] [ruby-core:84347] [Bug #14205]
    
    From: Drigg3r <drigg3r at yandex.com>

  Modified files:
    trunk/lib/resolv.rb


More information about the ruby-cvs mailing list