From 53b3f53b0665fa1d98a63e49e82273ec52e5f9f1 Mon Sep 17 00:00:00 2001
From: Julien Voisin
Date: Thu, 16 Feb 2023 11:35:48 +0100
Subject: Add another burned vuln to the php8 rules

---
 config/default_php8.rules | 1 +
 1 file changed, 1 insertion(+)

(limited to 'config/default_php8.rules')

diff --git a/config/default_php8.rules b/config/default_php8.rules
index 6d6b88e..4773b4e 100644
--- a/config/default_php8.rules
+++ b/config/default_php8.rules
@@ -43,6 +43,7 @@ sp.disable_function.function("mail").param("additional_parameters").value_r("\\-
 
 # Since it's now burned, me might as well mitigate it publicly
 sp.disable_function.function("putenv").param("assignment").value_r("LD_").drop()
+sp.disable_function.function("putenv").param("assignment").value("PATH").drop()
 
 # This one was burned in Nov 2019 - https://gist.github.com/LoadLow/90b60bd5535d6c3927bb24d5f9955b80
 sp.disable_function.function("putenv").param("assignment").value_r("GCONV_").drop()
-- 
cgit v1.3