From: eap <eap@opencascade.com>
Date: Tue, 1 Mar 2011 13:17:10 +0000 (+0000)
Subject: 0021196: [CEA 456] Integration and merge modification for debian packages
X-Git-Tag: V5_1_main_FINAL~3
X-Git-Url: http://git.salome-platform.org/gitweb/?a=commitdiff_plain;h=8d6ae009996ad43231a5969ccc7d4eb24b8100c6;p=modules%2Fgui.git

0021196: [CEA 456] Integration and merge modification for debian packages

Only append : when LD_LIBRARY_PATH is set, to avoid having it default to . and
execute arbitrary code.  This fixes Debian bug 598421 and CVE vulnerability
CVE-2010-3377 .
---

diff --git a/bin/runLightSalome.sh b/bin/runLightSalome.sh
index 2fe2866b9..9f6dcb1cc 100755
--- a/bin/runLightSalome.sh
+++ b/bin/runLightSalome.sh
@@ -137,7 +137,7 @@ if [ "${MY_PATH}" != "" ] ; then
     export PATH=${MY_PATH}:${PATH}
 fi
 if [ "${MY_LD_LIBRARY_PATH}" != "" ] ; then
-    export LD_LIBRARY_PATH=${MY_LD_LIBRARY_PATH}:${LD_LIBRARY_PATH}
+    export LD_LIBRARY_PATH=${MY_LD_LIBRARY_PATH}${LD_LIBRARY_PATH:+:$LD_LIBRARY_PATH}
 fi
 if [ "${PYTHONPATH}" != "" ] ; then
     export PYTHONPATH=${MY_PYTHONPATH}:${PYTHONPATH}