Mercurial > emacs

changeset 94177:bc3f03ffbdf9

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
2008-04-18 Steve Grubb <sgrubb@redhat.com> (tiny change) * vcdiff: Use mktemp (CVE-2008-1694).
author Romain Francoise <romain@orebokech.com>
date Fri, 18 Apr 2008 18:24:29 +0000
parents 4a907fffb2c3
children e65203929930
files lib-src/ChangeLog lib-src/vcdiff
diffstat 2 files changed, 6 insertions(+), 2 deletions(-) [+]
line wrap: on
line diff
--- a/lib-src/ChangeLog	Fri Apr 18 15:48:57 2008 +0000
+++ b/lib-src/ChangeLog	Fri Apr 18 18:24:29 2008 +0000
@@ -1,3 +1,7 @@
+2008-04-18  Steve Grubb  <sgrubb@redhat.com>  (tiny change)
+
+	* vcdiff: Use mktemp (CVE-2008-1694).
+
 2008-04-09  Jason Rumney  <jasonr@gnu.org>
 
 	* makefile.w32-in (distclean, maintainer-clean): New targets.
--- a/lib-src/vcdiff	Fri Apr 18 15:48:57 2008 +0000
+++ b/lib-src/vcdiff	Fri Apr 18 18:24:29 2008 +0000
@@ -84,14 +84,14 @@
 	case $f in
 	s.* | */s.*)
 		if
-			rev1=/tmp/geta$$
+			rev1=`mktemp /tmp/geta.XXXXXXXX`
 			get -s -p -k $sid1 "$f" > $rev1 &&
 			case $sid2 in
 			'')
 				workfile=`expr " /$f" : '.*/s.\(.*\)'`
 				;;
 			*)
-				rev2=/tmp/getb$$
+				rev2=`mktemp /tmp/getb.XXXXXXXX`
 				get -s -p -k $sid2 "$f" > $rev2
 				workfile=$rev2
 			esac