From 74bad3a6ec59a94b6b321f3f822c0ac9cde024c2 Mon Sep 17 00:00:00 2001
From: Tim Starling <tstarling@users.mediawiki.org>
Date: Sat, 31 Mar 2007 16:52:34 +0000
Subject: [PATCH] Quote and escape the binary path.

---
 includes/DjVuImage.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/includes/DjVuImage.php b/includes/DjVuImage.php
index 7872cf0d12..8033c3249d 100644
--- a/includes/DjVuImage.php
+++ b/includes/DjVuImage.php
@@ -220,7 +220,7 @@ class DjVuImage {
 	function retrieveMetaData() {
 		global $wgDjvuToXML;
 		if ( isset( $wgDjvuToXML ) ) {
-			$cmd = $wgDjvuToXML . ' --without-anno --without-text ' .
+			$cmd = wfEscapeShellArg( $wgDjvuToXML ) . ' --without-anno --without-text ' .
 				wfEscapeShellArg( $this->mFilename );
 			$xml = wfShellExec( $cmd );
 		} else {
-- 
2.20.1