From 56e12157d93d9ccb4e1491443f10eb5f66c6471e Mon Sep 17 00:00:00 2001
From: Stephane Chazelas <stephane.chazelas@gmail.com>
Date: Tue, 16 Sep 2014 21:57:03 +0100
Subject: Patch cve-2014-6271

Patch-ID: bash30-017
Under certain circumstances, bash will execute user code while processing the
environment for exported function definitions.

Change-Id: Iccac7b4ae914354978079783a9fe50b3b38ddad5
---
 builtins/common.h | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'builtins/common.h')

diff --git a/builtins/common.h b/builtins/common.h
index caeefea..d3df1b8 100644
--- a/builtins/common.h
+++ b/builtins/common.h
@@ -35,6 +35,8 @@
 #define SEVAL_NOLONGJMP 0x040
 
 /* Flags for describe_command, shared between type.def and command.def */
+#define SEVAL_FUNCDEF	0x080		/* only allow function definitions */
+#define SEVAL_ONECMD	0x100		/* only allow a single command */
 #define CDESC_ALL		0x001	/* type -a */
 #define CDESC_SHORTDESC		0x002	/* command -V */
 #define CDESC_REUSABLE		0x004	/* command -v */
-- 
cgit v1.1