Security bugfix: bzr.rb could be exploited

author: Benjamin Kellermann <Benjamin.Kellermann@gmx.de> 2009-06-08 11:17:32 +0200
committer: Benjamin Kellermann <Benjamin.Kellermann@gmx.de> 2009-06-08 11:17:32 +0200
commit: 8d39350677660d114502ceb48bd067c74339ece3 (patch)
tree: 3375a498f59b9ec33317a3eca99f48f76f769f37 /bzr.rb
parent: 71648b733395713000b5016e6319b5df14fdc634 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/bzr.rb b/bzr.rb
index cd1fe20..c3f4190 100644
--- a/bzr.rb
+++ b/bzr.rb
@@ -13,7 +13,7 @@ class VCS
 	end
 
 	def VCS.cat revision, file
-		`#{BZRCMD} cat -r #{revision} #{file}`
+		`#{BZRCMD} cat -r #{revision.to_i} #{file}`
 	end
 
 	def VCS.history
@@ -21,6 +21,6 @@ class VCS
 	end
 
 	def VCS.commit comment
-		`#{BZRCMD} commit -m '#{comment}'`
+		`#{BZRCMD} commit -m \"#{comment}\"`
 	end
 end
author	Benjamin Kellermann <Benjamin.Kellermann@gmx.de>	2009-06-08 11:17:32 +0200
committer	Benjamin Kellermann <Benjamin.Kellermann@gmx.de>	2009-06-08 11:17:32 +0200
commit	8d39350677660d114502ceb48bd067c74339ece3 (patch)
tree	3375a498f59b9ec33317a3eca99f48f76f769f37 /bzr.rb
parent	71648b733395713000b5016e6319b5df14fdc634 (diff)