diff options
| author |   Frédéric Buclin <LpSolit@gmail.com> | 2016-03-27 00:31:42 +0100 |
|---|---|---|
| committer | Frédéric Buclin <LpSolit@gmail.com> | 2016-03-27 00:31:42 +0100 |
| commit | 28ec15f1723f6d0c9bcceef8f86aa16a68b5fd93 (patch) | |
| tree | 98d0801d1ca8dafade61f6beadc2c4e88a904095 | |
| parent | Bug 1255619: CGI scripts should not send duplicated headers (diff) | |
| download | bugzilla-28ec15f1723f6d0c9bcceef8f86aa16a68b5fd93.tar.gz bugzilla-28ec15f1723f6d0c9bcceef8f86aa16a68b5fd93.tar.bz2 bugzilla-28ec15f1723f6d0c9bcceef8f86aa16a68b5fd93.zip | |
Bug 987742 (part 2): correctly detaint $ENV{PATH} on Strawberry Perl
| -rw-r--r-- | Bugzilla.pm | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/Bugzilla.pm b/Bugzilla.pm index 9cb15a7ee..e4772e08b 100644 --- a/Bugzilla.pm +++ b/Bugzilla.pm @@ -96,6 +96,7 @@ sub init_page { my $c_path = $path = dirname($^X); $c_path =~ s/\bperl\b(?=\\bin)/c/; $path .= ";$c_path"; + trick_taint($path); } } # Some environment variables are not taint safe |