NOTE: If you are a developer, please use a private wiki based on foswiki/trunk on a daily base ...or use trunk.foswiki.org to view this page for some minimal testing.
Use Item8841 for copy changes for release 1.1.
You are here: Tasks Web>Item38 (22 Feb 2009)

Item38: replace backtick, exec and system calls to use Sandbox..

Priority: CurrentState: AppliesTo: Component: WaitingFor:
Urgent Closed Engine   RobManson
to decrease the exploit surface.

-- SvenDowideit - 01 Nov 2008

Waiting for Rob Manson to report

Elevating to Urgent because if we have a security issue I do not want it forgotten.

And how long are we waiting for this Rob Manson?

My experience is that if someone does not answer back within 48 hours he never answers back because he has forgotten all about it

So please emails him if you have his email.

Anyone working on this?

ItemTemplate edit

Summary replace backtick, exec and system calls to use Sandbox..
ReportedBy SvenDowideit
Codebase trunk
SVN Range TWiki-4.2.3, Wed, 06 Aug 2008, build 17396
AppliesTo Engine
Component
Priority Urgent
CurrentState Closed
WaitingFor RobManson
Checkins Foswikirev:476 Foswikirev:483 Foswikirev:497 Foswikirev:517 Foswikirev:520 Foswikirev:736 Foswikirev:737 Foswikirev:738 Foswikirev:739 Foswikirev:740 Foswikirev:742 Foswikirev:743 Foswikirev:744 Foswikirev:745 Foswikirev:746 Foswikirev:800 Foswikirev:801
TargetRelease patch
ReleasedIn 1.0.0
Edit | Attach | Print version | History: r24 < r23 < r22 < r21 < r20 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r24 - 22 Feb 2009 - 18:34:57 - KennethLavrsen
 
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. see CopyrightStatement. Creative Commons LicenseGet Foswiki at sourceforge.net. Fast, secure and Free Open Source software downloads