texlive[71645] trunk: no extractbb in restricted mode

commits+karl at tug.org commits+karl at tug.org
Sat Jun 29 00:08:39 CEST 2024 

Revision: 71645
          https://tug.org/svn/texlive?view=revision&revision=71645
Author:   karl
Date:     2024-06-29 00:08:39 +0200 (Sat, 29 Jun 2024)
Log Message:
-----------
no extractbb in restricted mode

Modified Paths:
--------------
    trunk/Build/source/texk/kpathsea/ChangeLog
    trunk/Build/source/texk/kpathsea/texmf.cnf
    trunk/Master/texmf-dist/web2c/texmf.cnf

Modified: trunk/Build/source/texk/kpathsea/ChangeLog
===================================================================
--- trunk/Build/source/texk/kpathsea/ChangeLog	2024-06-28 21:47:10 UTC (rev 71644)
+++ trunk/Build/source/texk/kpathsea/ChangeLog	2024-06-28 22:08:39 UTC (rev 71645)
@@ -1,3 +1,7 @@
+2024-06-29  Karl Berry  <karl at tug.org>
+
+	* texmf.cnf (shell_escape_commands): remove extractbb.
+
 2024-06-04  Karl Berry  <karl at freefriends.org>
 
 	* texmf.cnf (MKTEXPK, etc.): adjust values shown to the

Modified: trunk/Build/source/texk/kpathsea/texmf.cnf
===================================================================
--- trunk/Build/source/texk/kpathsea/texmf.cnf	2024-06-28 21:47:10 UTC (rev 71644)
+++ trunk/Build/source/texk/kpathsea/texmf.cnf	2024-06-28 22:08:39 UTC (rev 71645)
@@ -649,7 +649,6 @@
 % 
 shell_escape_commands = \
 bibtex,bibtex8,\
-extractbb,\
 gregorio,\
 kpsewhich,\
 l3sys-query,\
@@ -660,7 +659,8 @@
 r-mpost,\
 texosquery-jre8,\
 
-% we'd like to allow:
+% other programs considered:
+% extractbb - allowed in the past, but can be exploited.
 % dvips - but external commands can be executed, need at least -R1.
 % epspdf, ps2pdf, pstopdf - need to respect openout_any,
 %   and gs -dSAFER must be used and check for shell injection with filenames.

Modified: trunk/Master/texmf-dist/web2c/texmf.cnf
===================================================================
--- trunk/Master/texmf-dist/web2c/texmf.cnf	2024-06-28 21:47:10 UTC (rev 71644)
+++ trunk/Master/texmf-dist/web2c/texmf.cnf	2024-06-28 22:08:39 UTC (rev 71645)
@@ -649,7 +649,6 @@
 % 
 shell_escape_commands = \
 bibtex,bibtex8,\
-extractbb,\
 gregorio,\
 kpsewhich,\
 l3sys-query,\
@@ -660,7 +659,8 @@
 r-mpost,\
 texosquery-jre8,\
 
-% we'd like to allow:
+% other programs considered:
+% extractbb - allowed in the past, but can be exploited.
 % dvips - but external commands can be executed, need at least -R1.
 % epspdf, ps2pdf, pstopdf - need to respect openout_any,
 %   and gs -dSAFER must be used and check for shell injection with filenames.

More information about the tex-live-commits mailing list.