diff options
| author | Rafael Garcia-Suarez <rgarciasuarez@gmail.com> | 2003-10-26 21:36:17 +0000 |
|---|---|---|
| committer | Rafael Garcia-Suarez <rgarciasuarez@gmail.com> | 2003-10-26 21:36:17 +0000 |
| commit | 7b756e0a3e6b2a4af093cd9686b01f419d3acefc (patch) | |
| tree | 6995276b62b65b2f4f515fce0b11080ec654b543 /taint.c | |
| parent | 0d7509de16bc60421fced9c9069b224cfd591b45 (diff) | |
| download | perl-7b756e0a3e6b2a4af093cd9686b01f419d3acefc.tar.gz | |
When %ENV has been turned into a non-magical hash after a
glob assignment, TAINT_ENV() may dump core because it
assumes $ENV{PATH} is magical. Fix this ; add a test to
verify that the PATH is still checked for taintedness.
p4raw-id: //depot/perl@21542
Diffstat (limited to 'taint.c')
| -rw-r--r-- | taint.c | 11 |
1 files changed, 8 insertions, 3 deletions
@@ -80,7 +80,8 @@ Perl_taint_env(pTHX) NULL }; - if (!PL_envgv) + /* Don't bother if there's no %ENV hash */ + if (!PL_envgv || !GvHV(PL_envgv)) return; #ifdef VMS @@ -98,7 +99,9 @@ Perl_taint_env(pTHX) TAINT; taint_proper("Insecure %s%s", "$ENV{DCL$PATH}"); } - if ((mg = mg_find(*svp, PERL_MAGIC_envelem)) && MgTAINTEDDIR(mg)) { + if (SvMAGICAL(*svp) + && (mg = mg_find(*svp, PERL_MAGIC_envelem)) + && MgTAINTEDDIR(mg)) { TAINT; taint_proper("Insecure directory in %s%s", "$ENV{DCL$PATH}"); } @@ -113,7 +116,9 @@ Perl_taint_env(pTHX) TAINT; taint_proper("Insecure %s%s", "$ENV{PATH}"); } - if ((mg = mg_find(*svp, PERL_MAGIC_envelem)) && MgTAINTEDDIR(mg)) { + if (SvMAGICAL(*svp) + && (mg = mg_find(*svp, PERL_MAGIC_envelem)) + && MgTAINTEDDIR(mg)) { TAINT; taint_proper("Insecure directory in %s%s", "$ENV{PATH}"); } |