Skip to content
This repository was archived by the owner on Oct 10, 2019. It is now read-only.

[CVE-2013-2208] Don't execute commands with --exec by default #2

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[CVE-2013-2208] Don't execute commands with --exec by default #2

wants to merge 1 commit into from

Conversation

xtaran
Copy link

@xtaran xtaran commented Jun 12, 2013

tpp's --exec feature is potentially a security risk when using with
presentations from untrusted sources. (Originally reported against tpp
in Debian at http://bugs.debian.org/706644)

This commit disables execution of --exec parameters by default and
adds an option -x to reenable the --exec feature only on explicit
request.

@xtaran
Don't execute commands with --exec by default
350aafb 
tpp's --exec feature is potentially a security risk when using with
presentations from untrusted sources. (Originally reported against tpp
in Debian at http://bugs.debian.org/706644)

This commit disables execution of --exec parameters by default and
adds an option -x to reenable the --exec feature only on explicit
request.
@xtaran
Copy link
Author

xtaran commented Jun 21, 2013

The CVE id CVE-2013-2208 has been assigned to this issue.

@cho-m cho-m mentioned this pull request Apr 14, 2022
Closed
6 tasks
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@xtaran