[interchange-cvs] interchange - jon modified lib/Vend/Util.pm

[interchange-core@interchange.redhat.com]

User:      jon
Date:      2002-04-15 14:38:14 GMT
Modified:  lib/Vend Tag: STABLE_4_8-branch Util.pm
Log:
Apply patch recommended by Mike Heins and Kevin Walsh.
Avoid potential security problems if email address isn't scrubbed.

Revision  Changes    Path
No                   revision



No                   revision



2.1.2.7   +3 -3      interchange/lib/Vend/Util.pm


rev 2.1.2.7, prev_rev 2.1.2.6
Index: Util.pm
===================================================================
RCS file: /var/cvs/interchange/lib/Vend/Util.pm,v
retrieving revision 2.1.2.6
retrieving revision 2.1.2.7
diff -u -u -r2.1.2.6 -r2.1.2.7
--- Util.pm	1 Mar 2002 20:10:53 -0000	2.1.2.6
+++ Util.pm	15 Apr 2002 14:38:14 -0000	2.1.2.7
@@ -1,6 +1,6 @@
 # Vend::Util - Interchange utility functions
 #
-# $Id: Util.pm,v 2.1.2.6 2002/03/01 20:10:53 racke Exp $
+# $Id: Util.pm,v 2.1.2.7 2002/04/15 14:38:14 jon Exp $
 # 
 # Copyright (C) 1996-2002 Red Hat, Inc. <interchange@redhat.com>
 #
@@ -74,7 +74,7 @@
 use Errno;
 use subs qw(logError logGlobal);
 use vars qw($VERSION @EXPORT @EXPORT_OK);
-$VERSION = substr(q$Revision: 2.1.2.6 $, 10);
+$VERSION = substr(q$Revision: 2.1.2.7 $, 10);
 
 BEGIN {
 	eval {
@@ -1986,7 +1986,7 @@
 #::logDebug("testing sendmail send none=$none");
 		last SEND if $none;
 #::logDebug("in Sendmail send $using");
-		open(MVMAIL,"|$Vend::Cfg->{SendMailProgram} $to") or last SEND;
+		open(MVMAIL,"|$Vend::Cfg->{SendMailProgram}") or last SEND;
 		my $mime = '';
 		$mime = Vend::Interpolate::mime('header', {}, '') if $use_mime;
 		print MVMAIL "To: $to\n", $reply, "Subject: $subject\n"