ruby-changes:8548
From: yugui <ko1@a...>
Date: Fri, 31 Oct 2008 22:56:43 +0900 (JST)
Subject: [ruby-changes:8548] Ruby:r20082 (ruby_1_9_1): merged r20074 from trunk into ruby_1_9_1.
yugui 2008-10-31 22:56:15 +0900 (Fri, 31 Oct 2008) New Revision: 20082 http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=20082 Log: merged r20074 from trunk into ruby_1_9_1. * dir.c (dir_globs): need taint check. reported by steve <oksteev at gmail.com> Modified files: branches/ruby_1_9_1/ChangeLog branches/ruby_1_9_1/dir.c Index: ruby_1_9_1/ChangeLog =================================================================== --- ruby_1_9_1/ChangeLog (revision 20081) +++ ruby_1_9_1/ChangeLog (revision 20082) @@ -1,3 +1,8 @@ +Fri Oct 31 12:51:25 2008 Yukihiro Matsumoto <matz@r...> + + * dir.c (dir_globs): need taint check. reported by steve + <oksteev at gmail.com> + Fri Oct 31 12:42:45 2008 wanabe <s.wanabe@g...> * array.c (rb_ary_decrement_share): fix to work recycling Index: ruby_1_9_1/dir.c =================================================================== --- ruby_1_9_1/dir.c (revision 20081) +++ ruby_1_9_1/dir.c (revision 20082) @@ -1571,7 +1571,7 @@ for (i = 0; i < argc; ++i) { int status; VALUE str = argv[i]; - StringValue(str); + SafeStringValue(str); status = push_glob(ary, str, flags); if (status) GLOB_JUMP_TAG(status); } -- ML: ruby-changes@q... Info: http://www.atdot.net/~ko1/quickml/