Zsh Mailing List Archive
Messages sorted by: Reverse Date, Date, Thread, Author

Re: Security issue in Zsh restricted mode (zsh -r) – escape via history built‑ins

> 2026/04/06 3:24、Oliver Kiddle <opk@xxxxxxx>のメール:
> 
> diff --git a/Src/options.c b/Src/options.c
> index 649c654ba..7884299e1 100644
> --- a/Src/options.c
> +++ b/Src/options.c
(snip)
> @@ -357,7 +356,6 @@ static short zshletters[LAST_OPT - FIRST_OPT + 1] = {
>     /* o */  0, /* long option name follows */
>     /* p */  PRIVILEGED,
>     /* q */  0,
> -    /* r */  RESTRICTED,
>     /* s */  SHINSTDIN,
>     /* t */  SINGLECOMMAND,
>     /* u */ -UNSET,
> @@ -434,7 +432,6 @@ static short kshletters[LAST_OPT - FIRST_OPT + 1] = {
>     /* o */  0,
>     /* p */  PRIVILEGED,
>     /* q */  0,
> -    /* r */  RESTRICTED,
>     /* s */  SHINSTDIN,
>     /* t */  SINGLECOMMAND,
>     /* u */ -UNSET,

Replace '/* r */ RESTRICTED' with '/* r */ 0' instead of removing.
Otherwise options -s -t ... are misunderstood.
Messages sorted by: Reverse Date, Date, Thread, Author