diff --git a/ChangeLog b/ChangeLog
index 60deb3a729..64bbaec6ce 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+Fri Dec  5 01:19:21 2008  Yukihiro Matsumoto  <matz@ruby-lang.org>
+
+	* pack.c (pack_pack): propagate taint status from format string to
+	  result string.
+
 Fri Dec  5 00:34:10 2008  NAKAMURA Usaku  <usa@ruby-lang.org>
 
 	* process.c (run_exec_dup2): need to sort by reverted order when
diff --git a/pack.c b/pack.c
index 2ecb2d68d6..c4ee6dbb30 100644
--- a/pack.c
+++ b/pack.c
@@ -1017,6 +1017,7 @@ pack_pack(VALUE ary, VALUE fmt)
     if (associates) {
 	rb_str_associate(res, associates);
     }
+    OBJ_INFECT(res, fmt);
     return res;
 }