ACL: Disallow '/' characters in queue names specified for "queue="

[exim.git] / src / src / acl.c

diff --git a/src/src/acl.c b/src/src/acl.c
index 739cd91aea037180d3d61a0177dfeef2a3a3bf00..b8a4b8865b2a8dd1bedbb11ef0f387de6f6543e5 100644 (file)
--- a/src/src/acl.c
+++ b/src/src/acl.c
@@ -1702,7 +1702,7 @@ switch(vp->value)
     return csa_return_code[rc];
 
   case VERIFY_HDR_SYNTAX:
-    /* Check that all relevant header lines have the correct syntax. If there is
+    /* Check that all relevant header lines have the correct 5322-syntax. If there is
     a syntax error, we return details of the error to the sender if configured to
     send out full details. (But a "message" setting on the ACL can override, as
     always). */
@@ -3597,6 +3597,12 @@ for (; cb != NULL; cb = cb->next)
     #endif
 
     case ACLC_QUEUE:
+    if (Ustrchr(arg, '/'))
+      {
+      *log_msgptr = string_sprintf(
+             "Directory separator not permitted in queue name: '%s'", arg);
+      return ERROR;
+      }
     queue_name = string_copy_malloc(arg);
     break;