mirror/patch
1
0
Fork 0
mirror of https://https.git.savannah.gnu.org/git/patch.git synced 2026-01-28 02:15:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
patch/tests
History
Andreas Gruenbacher 4e9269a5fc Make sure symlinks don't point outside working directory (CVE-2015-119) 
When creating symlinks from git-style patches, make sure the symlinks don't
point above the current working directory.  Otherwise, a subsequent patch could
use the symlink to write outside the working directory.

* src/pch.c (symlink_target_is_valid): New function to check for valid symlink
targets.
* src/util.c (move_file): Use symlink_target_is_valid() here.
* tests/symlinks: Add valid and invalid symlink test cases.
2015-01-19 23:18:30 +01:00
..
.gitignore
maint: ignore more build artifacts
2012-08-08 01:41:42 +02:00
asymmetric-hunks
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
backup-prefix-suffix
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
bad-filenames
Improve messages when in --dry-run mode
2012-09-22 20:10:53 +02:00
bad-usage
Initialize data structures early enough
2012-10-04 12:43:05 +02:00
concat-git-diff
Fix file truncation when switching from git diff to non-git diff
2012-09-18 12:53:38 +02:00
copy-rename
Add missing "diff --git" index lines
2012-07-31 21:58:24 +02:00
corrupt-reject-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
create-delete
Improve error message when refusing to delete file
2014-08-13 01:16:44 +02:00
create-directory
Test case for the dry-run fix
2013-07-30 15:28:25 +02:00
criss-cross
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
crlf-handling
Improve handling of LF vs. CRLF line endings
2012-09-22 20:02:48 +02:00
dash-o-append
Minor test case updates
2012-09-18 00:47:30 +02:00
empty-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
fifo
Improve messages when in --dry-run mode
2012-09-22 20:10:53 +02:00
file-modes
Add missing "diff --git" index lines
2012-07-31 21:58:24 +02:00
filename-choice
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
git-binary-diff
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
global-reject-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
inname
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
line-numbers
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
Makefile.am
Fix removing empty directories
2013-03-10 19:02:54 +01:00
mangled-numbers-abort
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
merge
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
mixed-patch-types
Improve messages when in --dry-run mode
2012-09-22 20:10:53 +02:00
munged-context-format
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
need-filename
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
no-newline-triggers-assert
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
preserve-c-function-names
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
preserve-mode-and-timestamp
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
quoted-filenames
Support double-quoted filenames in all context diff formats
2012-08-11 11:09:11 +02:00
read-only-files
Only warn when trying to modify read-only files
2012-04-17 16:48:19 +02:00
reject-format
Preserve function names in reject files
2013-08-19 22:44:46 +02:00
remember-backup-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
remember-reject-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
remove-directories
Fix removing empty directories
2013-03-10 19:02:54 +01:00
symlinks
Make sure symlinks don't point outside working directory (CVE-2015-119)
2015-01-19 23:18:30 +01:00
test-lib.sh
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00
unmodified-files
maint: update all copyright year number ranges
2012-01-01 10:26:02 +01:00