paul-nameless / tg

terminal telegram client
The Unlicense
943 stars 75 forks source link

a might-be commandline-inject security risk in mailcap #270

Closed kalashnlkov closed 2 years ago

kalashnlkov commented 2 years ago

mailcap is being improved vulnerable and assigned CVE-2015-20107.

It's used to handle ctx here. https://github.com/paul-nameless/tg/blob/49981d12471515222e75a740c5ee57da621895ff/tg/utils.py#L88

is this necessary to make a quote? ( i don't know if path is risky with escape character here.) https://github.com/paul-nameless/tg/blob/49981d12471515222e75a740c5ee57da621895ff/tg/controllers.py#L500