Regex hardening to fix CVE-2018-12356.
This commit is contained in:
parent
a872abd0aa
commit
8501ac007e
|
@ -57,7 +57,7 @@ if ! $VALID; then
|
|||
exit 1
|
||||
fi
|
||||
if $VALID && $REVSIG; then
|
||||
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null | grep "\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)"
|
||||
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null | grep "^\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)"
|
||||
echo "$GOODREVSIG"
|
||||
else
|
||||
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null
|
||||
|
|
Loading…
Reference in New Issue