Details
-
Bug
-
Status: Closed
-
Normal
-
Resolution: Won't Do
-
PUP 3.8.5
-
None
-
None
-
ubuntu 12.04
Description
It appears that validate_absolute_path is not working properly in some situations. For example:
$testpath = '/usr/bin/;rm -rf /;' |
validate_absolute_path($testpath) |
exec {
|
"mkdir ${testpath}": |
returns => 0,
|
user => 'root', |
;
|
}
|
The path validated (incorrectly)
Another example:
$testpath = '/*&^ foo\bar#baz /usr/bin/;rm -rf /;' |
validate_absolute_path($testpath) |
exec {
|
"mkdir ${testpath}": |
returns => 0,
|
user => 'root', |
;
|
}
|
