jeans/LibreELEC.tv
jeans/LibreELEC.tv
1
0
Fork 0
mirror of https://github.com/LibreELEC/LibreELEC.tv.git synced 2025-07-29 13:46:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

fixed oe_setup_addon unsafe with user inputs from addons settings

Browse Source
This commit is contained in:
Giovanni Cascione 2022-03-14 23:50:47 +01:00
parent 5d5a4567ad
commit 1f2e7b24bc
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
packages/mediacenter/kodi/profile.d/00-addons.conf
View File

@ -31,9 +31,9 @@ oe_setup_addon() {
if [ -f "$xml_file" ]; then if [ -f "$xml_file" ]; then
XML_SETTINGS_VER="$(xmlstarlet sel -t -m settings -v @version $xml_file)" XML_SETTINGS_VER="$(xmlstarlet sel -t -m settings -v @version $xml_file)"
if [ "$XML_SETTINGS_VER" = "2" ]; then if [ "$XML_SETTINGS_VER" = "2" ]; then
eval $(xmlstarlet sel -t -m settings/setting -v @id -o "=\"" -v . -o "\"" -n "$xml_file") eval $(xmlstarlet sel -t -m settings/setting -v @id -o "=" -v . -n "$xml_file" | sed -e "s/'/'\\\\''/g; s/=/='/; s/$/'/")
else else
eval $(xmlstarlet sel -t -m settings -m setting -v @id -o "=\"" -v @value -o "\"" -n "$xml_file") eval $(xmlstarlet sel -t -m settings -m setting -v @id -o "=" -v @value -n "$xml_file" | sed -e "s/'/'\\\\''/g; s/=/='/; s/$/'/")
fi fi
fi fi
done done