Skip to content

Commit fa2ea37

Browse files
laanwjlaanwj
committed
Merge #13479: contrib: Fix CVE-2018-12356 by hardening the regex
9e2e562 Fix CVE-2018-12356 by hardening the regex. (Loganaden Velvindron) Pull request description: Detailed write-up here: https://neopg.io/blog/pass-signature-spoof/ Tree-SHA512: 2020474ff4c7b5e7f1bea932c63da62aca48d3dc6dcd04507afefad6c40f2977ed2d2916defe2e8e7936a2d498125c578077870147954a7af9b29b823cbb0b10
2 parents 81069a7 + 9e2e562 commit fa2ea37

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

contrib/verify-commits/gpg.sh

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ if ! $VALID; then
5757
exit 1
5858
fi
5959
if $VALID && $REVSIG; then
60-
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null | grep "\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)"
60+
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null | grep "^\[GNUPG:\] \(NEWSIG\|SIG_ID\|VALIDSIG\)"
6161
echo "$GOODREVSIG"
6262
else
6363
printf '%s\n' "$INPUT" | gpg --trust-model always "$@" 2>/dev/null

0 commit comments

Comments
 (0)