]> git.ipfire.org Git - thirdparty/vim.git/commit
projects / thirdparty / vim.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: fde5a56) | patch
patch 9.2.0435: [security]: backticks in 'path' may cause shell execution on completion v9.2.0435
authorChristian Brabandt <cb@256bit.org>
Sun, 3 May 2026 16:10:03 +0000 (16:10 +0000)
committerChristian Brabandt <cb@256bit.org>
Sun, 3 May 2026 18:17:02 +0000 (18:17 +0000)
commit190cb3c2b9c769a3972bcfd991a7b5b6cb771ef0
tree7c78b5e6baf76bb26bd6f9c634b01b245a114073tree | snapshot
parentfde5a56ecbf9101314ddcc572533e147a9fb11ffcommit | diff
patch 9.2.0435: [security]: backticks in 'path' may cause shell execution on completion

Problem:  [security]: Backticks enclosed shell commands in the 'path'
          option value are executed during completion (q1uf3ng).
Solution: Skip path entries containing backticks, add P_SECURE to 'path'
          option, so that it cannot be set from a modeline (for symmetry with
          the 'cdpath' option)

Github Advisory:
https://github.com/vim/vim/security/advisories/GHSA-hwg5-3cxw-wvvg

Supported by AI.

Signed-off-by: Christian Brabandt <cb@256bit.org>
runtime/doc/options.txt diff | blob | blame | history
src/findfile.c diff | blob | blame | history
src/optiondefs.h diff | blob | blame | history
src/testdir/test_find_complete.vim diff | blob | blame | history
src/testdir/test_modeline.vim diff | blob | blame | history
src/version.c diff | blob | blame | history
Mirror of https://github.com/vim/vim.git