1 To: vim_dev@googlegroups.com
4 From: Bram Moolenaar <Bram@moolenaar.net>
6 Content-Type: text/plain; charset=UTF-8
7 Content-Transfer-Encoding: 8bit
11 Problem: Can set environment variables in the sandbox, could be abused.
12 Solution: Disallow it.
16 *** ../vim-7.3.069/src/eval.c 2010-11-10 20:31:24.000000000 +0100
17 --- src/eval.c 2010-12-02 14:42:31.000000000 +0100
20 else if (endchars != NULL
21 && vim_strchr(endchars, *skipwhite(arg)) == NULL)
28 else if (endchars != NULL
29 && vim_strchr(endchars, *skipwhite(arg)) == NULL)
31 ! else if (!check_secure())
35 *** ../vim-7.3.069/src/version.c 2010-11-24 18:48:08.000000000 +0100
36 --- src/version.c 2010-12-02 14:46:44.000000000 +0100
40 { /* Add new patch number below this line */
46 The only way the average employee can speak to an executive is by taking a
47 second job as a golf caddie.
48 (Scott Adams - The Dilbert principle)
50 /// Bram Moolenaar -- Bram@Moolenaar.net -- http://www.Moolenaar.net \\\
51 /// sponsor Vim, vote for features -- http://www.Vim.org/sponsor/ \\\
52 \\\ an exciting new programming language -- http://www.Zimbu.org ///
53 \\\ help me help AIDS victims -- http://ICCF-Holland.org ///