Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[v1.1] Do not import SRANDOM upper bound from env (re: 00b296c)
If SRANDOM was exported to the environment, a child ksh was dutifully importing it, setting the imported value as an upper bound. This is very undesirable and may well be a vulnerability, depending on the script. src/cmd/ksh93/sh/init.c: put_srand(): - Refuse to set the upper bound if the SH_INIT state is on, which is the case while importing the environment at init time.
- Loading branch information