You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@mnemonic.apache.org by "Wang, Gang (Jira)" <ji...@apache.org> on 2022/03/08 05:19:00 UTC

[jira] [Created] (MNEMONIC-734) Unsanitized input from a command line argument in run.py

Wang, Gang created MNEMONIC-734:
-----------------------------------

             Summary: Unsanitized input from a command line argument in run.py
                 Key: MNEMONIC-734
                 URL: https://issues.apache.org/jira/browse/MNEMONIC-734
             Project: Mnemonic
          Issue Type: Bug
          Components: Tools
    Affects Versions: 0.17.0
            Reporter: Wang, Gang
            Assignee: Gordon King
             Fix For: 0.17.0


There are 3 security vulnerabilities identified in script run.py, which is about command argument of subprocess.check_call(...). It needs to be sanitized before passing to this call.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)