From: lpsolit%gmail.com <>
Date: Fri, 7 Apr 2006 05:21:00 +0000 (+0000)
Subject: Bug 332906: Wrong parameters passed to sudo sessions when trying to bypass validation... 
X-Git-Tag: bugzilla-2.22~11
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9c4f11375968f3ea3c34d20eeb0cb6041e2feee4;p=thirdparty%2Fbugzilla.git

Bug 332906: Wrong parameters passed to sudo sessions when trying to bypass validation checks - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
---

diff --git a/relogin.cgi b/relogin.cgi
index 1aef30e100..0d772f9eb9 100755
--- a/relogin.cgi
+++ b/relogin.cgi
@@ -121,8 +121,8 @@ elsif ($action eq 'begin-sudo') {
             && ($token_data eq 'sudo_prepared'))
     {
         ThrowUserError('sudo_preparation_required', 
-                       { target_login => $cgi->param('target_login'),
-                               reason => $cgi->param('reason')});
+                       { target_login => scalar $cgi->param('target_login'),
+                               reason => scalar $cgi->param('reason')});
     }
     Bugzilla::Token::DeleteToken($cgi->param('token'));