Browse Source

Regex hardening to fix CVE-2018-12356.

pull/186/head
PenTesting 4 years ago committed by GitHub
parent
commit
5da1adce92
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
  1. 2
      contrib/verify-commits/gpg.sh

2
contrib/verify-commits/gpg.sh

@ -30,7 +30,7 @@ if ! $VALID; then @@ -30,7 +30,7 @@ if ! $VALID; then
exit 1
fi
if $VALID && $REVSIG; then
echo "$INPUT" | gpg --trust-model always "$@" | grep "\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$INPUT" | gpg --trust-model always "$@" | grep "^\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$GOODREVSIG"
else
echo "$INPUT" | gpg --trust-model always "$@" 2>/dev/null

Loading…
Cancel
Save