File: 439840-nowplaying.diff

package info (click to toggle)
irssi-scripts 20220704
  • links: PTS, VCS
  • area: main
  • in suites: bookworm
  • size: 4,204 kB
  • sloc: perl: 75,132; sh: 193; makefile: 6
file content (16 lines) | stat: -rw-r--r-- 514 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
 
Description: Fix multiple CRLF injection vulnerabilities in "now playing" scripts
Forwarded: not-needed
Author: Wouter Coekaerts
Last-Update: 2016-02-29
--- a/scripts/xmms.pl
+++ b/scripts/xmms.pl
@@ -139,6 +139,9 @@ Example: /set xmms_format_time %%m minut
         $format =~ s/\%$_/$fs{$_}/g;
     }
 
+    # remove newline characters
+    $format =~ s/[\r\n]/ /g;
+
     # sending it.
     if ($server && $server->{connected} && $witem &&
         ($witem->{type} eq "CHANNEL" || $witem->{type} eq "QUERY")) {