File 0002-Fix-acl_version-check-bsc-1089802.patch of Package hawk2.12073
From 5b44a9186ef393ebcb84ccbd0dd3107f356597b8 Mon Sep 17 00:00:00 2001
From: ayoub-belarbi <belarbi.ayoub@gmail.com>
Date: Tue, 22 May 2018 10:38:26 +0200
Subject: [PATCH 17/27] Medium: Fix acl_version check (bsc#1089802)
Remove shellescape since it will alter the command syntax and break.
Safe_x will prevent shell injection.
---
/hawk/app/lib/util.rb | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a//hawk/app/lib/util.rb b//hawk/app/lib/util.rb
index ed4ea6b4..751f1209 100644
--- a//hawk/app/lib/util.rb
+++ b//hawk/app/lib/util.rb
@@ -347,7 +347,7 @@ module Util
'-t', '5',
'-Ql',
'--xpath',
- '/cib[@validate-with]'.shellescape).lines.first.to_s.match(/validate-with=\"pacemaker-([0-9.]+)\"/)
+ '/cib[@validate-with]').lines.first.to_s.match(/validate-with=\"pacemaker-([0-9.]+)\"/)
return m.captures[0].to_f if m
2.0
end
--
2.16.4