git.ipfire.org Git - thirdparty/rspamd.git/commit

]> git.ipfire.org Git - thirdparty/rspamd.git/commit

projects / thirdparty / rspamd.git / commit

author	Alexander Moisseev <moiseev@mezonplus.ru>
	Mon, 2 Feb 2026 08:36:55 +0000 (11:36 +0300)
committer	Alexander Moisseev <moiseev@mezonplus.ru>
	Mon, 2 Feb 2026 08:43:59 +0000 (11:43 +0300)
commit	07f452c54fb3cf2293c209172d093725727e9cec
tree	e671c6621651229da37a1e646173d3fe79d45cf8	tree
parent	048d3a04b7a26c42bcffadced664a78f286680d3	commit \| diff

[Minor] Fix security issues and add security documentation

- Fix command injection in configdump(): use list form open() instead of
backticks with string concatenation
- Fix ReDoS in ProcessLog(): escape regex metacharacters in symbol names
with \Q...\E when matching against log symbols
- Add SECURITY CONSIDERATIONS section to POD documenting trust assumptions
for map files, configuration, and log files

utils/mapstats.pl

diff | blob | blame | history

Mirror of https://github.com/rspamd/rspamd.git

RSS Atom