Bug#992058: opensysusers: uses `eval` on data that is not supposed to be safe to eval

Package: opensysusers Version: 0.6-2 Severity: serious Tags: security upstream X-Debbugs-Cc: Debian Security Team opensysusers uses the shell's `eval` on everything in sysusers.d like there is no tomorrow. These files can contain shell meta-characters that should not result in code execution, e.g

Processed: tagging 661440

Processing commands for cont...@bugs.debian.org: > tags 661440 + ftbfs Bug #661440 [src:libexplain] libexplain FTBFS on Alpha: linux/ac/sys/types.h: No such file or directory Added tag(s) ftbfs. > thanks Stopping processing here. Please contact me if you need assistance. -- 661440: https://bugs