]> git.ipfire.org Git - thirdparty/bugzilla.git/commitdiff
projects / thirdparty / bugzilla.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 32783c1)
no bug - untaint default values in localconfig
authorDylan William Hardison <dylan@hardison.net>
Fri, 4 May 2018 19:41:39 +0000 (15:41 -0400)
committerGitHub <noreply@github.com>
Fri, 4 May 2018 19:41:39 +0000 (15:41 -0400)
Bugzilla/Install/Localconfig.pm patch | blob | blame | history

diff --git a/Bugzilla/Install/Localconfig.pm b/Bugzilla/Install/Localconfig.pm
index 7a913358c9c9032c16909f525f3a5a9ce9f17159..55394bc2eb0a9fd59152fc91d994729dc5381cf8 100644 (file)
--- a/Bugzilla/Install/Localconfig.pm
+++ b/Bugzilla/Install/Localconfig.pm
@@ -211,6 +211,7 @@ sub _read_localconfig_from_env {
         else {
             my $default = $var->{default};
             $localconfig{$name} = ref($default) eq 'CODE' ? $default->() : $default;
+            untaint($localconfig{$name});
         }
     }
 
Mirror of https://github.com/bugzilla/bugzilla.git