From 7db2b94082ae5241b94a9f23d526a44737014bd1 Mon Sep 17 00:00:00 2001
From: Dietmar Maurer <dietmar@proxmox.com>
Date: Wed, 31 Dec 2014 17:28:33 +0100
Subject: [PATCH] Daemon: untaint value read from ENV

---
 data/PVE/Daemon.pm | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/data/PVE/Daemon.pm b/data/PVE/Daemon.pm
index 3d21401..b671453 100644
--- a/data/PVE/Daemon.pm
+++ b/data/PVE/Daemon.pm
@@ -366,6 +366,11 @@ sub new {
 	my $lockfd = $ENV{PVE_DAEMON_LOCK_FD};
 	delete $ENV{PVE_DAEMON_LOCK_FD};
 
+	if (defined($lockfd)) {
+	    $lockfd =~ m/^(\d+)$/;
+	    $lockfd = $1; # untaint
+	}
+
 	die "please run as root\n" if !$restart && ($> != 0);
 
 	die "can't create more that one PVE::Daemon" if $daemon_initialized;
-- 
2.39.2