* libmisc/env.c: Fix sanitize_env() noslash support. This fixes

Alioth#311740. Thanks to Jason Cassell.
2010-01-24 17:23:42 +00:00 · 2010-01-24 17:23:42 +00:00 · 5ba95d4c53
commit 5ba95d4c53
parent 291b28ac52
2 changed files with 7 additions and 2 deletions
--- a/7
+++ b/7
@ -1,10 +1,15 @@
+2009-01-24  Nicolas François  <nicolas.francois@centraliens.net>
+
+	* libmisc/env.c: Fix sanitize_env() noslash support. This fixes
+	Alioth#311740.
+
 2009-01-24  Nicolas François  <nicolas.francois@centraliens.net>

 	* src/su.c: Do not sanitize the environment. This breaks
 	--preserve-environment. This sanitation was disabled on Debian
 	since quite some time with no reported issues, and sanitize_env()
 	documentation agrees that it should be useless as all modern
-	Unixes will handle setuid executables properly. This Fixes
+	Unixes will handle setuid executables properly. This fixes
 	Alioth#312287.

 2009-01-24  Nicolas François  <nicolas.francois@centraliens.net>
--- a/libmisc/env.c
+++ b/libmisc/env.c
@ -251,7 +251,7 @@ void sanitize_env (void)
 			if (strncmp (*cur, *bad, strlen (*bad)) != 0) {
 				continue;
 			}
-			if (strchr (*cur, '/') != NULL) {
+			if (strchr (*cur, '/') == NULL) {
 				continue;	/* OK */
 			}
 			for (move = cur; NULL != *move; move++) {