mirrors/emacs
1
Fork 0
mirror of git://git.sv.gnu.org/emacs.git synced 2026-01-03 18:41:25 -08:00
Code Issues Projects Releases Wiki Activity
emacs/lisp/cedet/ede
History
Eric M. Ludlam 6e9ddbb313 Fix EDE security flaw involving loading arbitrary Lisp from Project.ede. 
* lisp/ede.el (ede-project-directories): New option.
(ede-directory-safe-p): Check it.
(ede-initialize-state-current-buffer, ede, ede-new)
(ede-check-project-directory, ede-rescan-toplevel)
(ede-load-project-file, ede-parent-project, ede-current-project):
(ede-target-parent): Avoid loading in a project unless it is safe,
since it may involve malicious code.  This security flaw was
pointed out by Hiroshi Oota.

* lisp/ede/auto.el (ede-project-autoload): Add safe-p slot.
(ede-project-class-files): Projects using Project.ede are unsafe.
(ede-auto-load-project): New method.

* lisp/ede/simple.el (ede-project-class-files): Mark as unsafe.
2012-01-13 21:19:25 +08:00
..
auto.el Fix EDE security flaw involving loading arbitrary Lisp from Project.ede. 2012-01-13 21:19:25 +08:00
autoconf-edit.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
base.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
cpp-root.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
custom.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
dired.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
emacs.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
files.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
generic.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
linux.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
locate.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
make.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
makefile-edit.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
pconf.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
pmake.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-archive.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-aux.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-comp.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-elisp.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-info.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-misc.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-obj.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-prog.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-scheme.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj-shared.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
proj.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
project-am.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
shell.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
simple.el Fix EDE security flaw involving loading arbitrary Lisp from Project.ede. 2012-01-13 21:19:25 +08:00
source.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
speedbar.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
srecode.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
system.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00
util.el Add 2012 to FSF copyright years for Emacs files 2012-01-05 01:46:05 -08:00