summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorZac Medico <zmedico@gentoo.org>2008-10-12 21:01:12 +0000
committerZac Medico <zmedico@gentoo.org>2008-10-12 21:01:12 +0000
commit3308efd69be3bcbfde53f65def1a0575ed498449 (patch)
treee40dadb79964ce510d649f5b6ab6ad3bee0d466a
parent312bb82bbc4170346159754b57fb464717bd88a7 (diff)
downloadportage-3308efd69be3bcbfde53f65def1a0575ed498449.tar.gz
portage-3308efd69be3bcbfde53f65def1a0575ed498449.tar.bz2
portage-3308efd69be3bcbfde53f65def1a0575ed498449.zip
Add an explicit note about bug #239560 in the relevant code.
svn path=/main/trunk/; revision=11684
-rwxr-xr-xbin/ebuild.sh4
1 files changed, 3 insertions, 1 deletions
diff --git a/bin/ebuild.sh b/bin/ebuild.sh
index 92b635c3a..35b940bfb 100755
--- a/bin/ebuild.sh
+++ b/bin/ebuild.sh
@@ -272,7 +272,9 @@ register_die_hook() {
export EBUILD_DEATH_HOOKS="${EBUILD_DEATH_HOOKS} $*"
}
-# Ensure that $PWD is sane whenever possible.
+# Ensure that $PWD is sane whenever possible, to protect against
+# exploitation of insecure search path for python -c in ebuilds.
+# See bug #239560.
if ! hasq "$EBUILD_PHASE" clean depend help ; then
cd "$PORTAGE_BUILDDIR" || \
die "PORTAGE_BUILDDIR does not exist: '$PORTAGE_BUILDDIR'"