From: Reed Loden <reed@reedloden.com>
Date: Fri, 21 Jan 2011 21:18:38 +0000 (-0800)
Subject: Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.pm to... 
X-Git-Tag: bugzilla-3.2.10~9
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=b4591bac080d306db1d9a1704adf0c9f30a92359;p=thirdparty%2Fbugzilla.git

Bug 591165: (CVE-2010-4411) [SECURITY] Bump minimum required version of CGI.pm to v3.51 in order to address header injection vulnerability.
[r=mkanat a=mkanat]
---

diff --git a/Bugzilla/Install/Requirements.pm b/Bugzilla/Install/Requirements.pm
index 3991743b76..00c50978fc 100644
--- a/Bugzilla/Install/Requirements.pm
+++ b/Bugzilla/Install/Requirements.pm
@@ -247,9 +247,9 @@ sub OPTIONAL_MODULES {
     {
         package => 'CGI.pm',
         module  => 'CGI',
-        # 3.50 fixes a security problem that affects Bugzilla.
+        # 3.51 fixes a security problem that affects Bugzilla.
         # (bug 591165)
-        version => '3.50',
+        version => '3.51',
         feature => 'Recommended important security fix'
     },
     );