1 # This should get removed whenever 2.16 is released, assuming it has the fix
2 # included. http://seclists.org/oss-sec/2014/q2/129. There's not upstream
3 # concensus that quoting arguments in a mode which is widely agreed upon to be
4 # risky so track upstream discussions here, too.
6 diff --git b/src/nrpe.c a/src/nrpe.c
7 index 381f0ac..ad1e05d 100644
10 @@ -53,7 +53,7 @@ int use_ssl=FALSE;
12 #define DEFAULT_COMMAND_TIMEOUT 60 /* default timeout for execution of plugins */
14 -#define NASTY_METACHARS "|`&><'\"\\[]{};"
15 +#define NASTY_METACHARS "|`&><'\"\\[]{};\n"
16 #define howmany(x,y) (((x)+((y)-1))/(y))
17 #define MAX_LISTEN_SOCKS 16