Commit Graph

7 Commits

Author SHA1 Message Date
Anders Kaseorg
665dfc26ed libversion: Fix unsafe concatenation of $LD_LIBRARY_PATH
Naive concatenation of $LD_LIBRARY_PATH can result in an empty
colon-delimited segment; this tells glibc to load libraries from the
current directory, which is definitely wrong, and may be a security
vulnerability if the current directory is untrusted.  This particular
case probably has no security relevance, but we should avoid this
unsafe pattern anyway in case it gets copied.  See #76804.

Signed-off-by: Anders Kaseorg <andersk@mit.edu>
2020-05-31 01:42:09 -07:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
Patrick Hilhorst
449c1f88b4
libversion: 2.9.0 -> 3.0.1 2020-01-27 14:30:04 +01:00
Jonathan Ringer
74d8f3ca5d libversion: 2.8.1 -> 2.9.0 2019-08-13 04:19:14 -07:00
R. RyanTM
af3bd21d6b libversion: 2.7.0 -> 2.8.1
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/libversion/versions
2018-11-19 02:34:53 -08:00
R. RyanTM
4b69581737 libversion: 2.6.0 -> 2.7.0 (#49244)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/libversion/versions
2018-10-27 09:24:37 -04:00
Ryan Mulligan
b2317a0b87 libversion: init at 2.6.0 2018-05-27 09:12:52 -07:00