Browse Source

Regex hardening to fix CVE-2018-12356.

pull/186/head
PenTesting 2 years ago
parent
commit
5da1adce92
No account linked to committer's email address
1 changed files with 1 additions and 1 deletions
  1. 1
    1
      contrib/verify-commits/gpg.sh

+ 1
- 1
contrib/verify-commits/gpg.sh View File

@@ -30,7 +30,7 @@ if ! $VALID; then
exit 1
fi
if $VALID && $REVSIG; then
echo "$INPUT" | gpg --trust-model always "$@" | grep "\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$INPUT" | gpg --trust-model always "$@" | grep "^\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)" 2>/dev/null
echo "$GOODREVSIG"
else
echo "$INPUT" | gpg --trust-model always "$@" 2>/dev/null

Loading…
Cancel
Save