From: jocuri%softhome.net <>
Date: Thu, 8 Jul 2004 06:49:41 +0000 (+0000)
Subject: Patch for bug 250259: Fix taint error on disallownew field in editproducts.cgi; patch... 
X-Git-Tag: bugzilla-2.18rc1~18
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=e09a3eae0f1068e40ae8e09f4ba7e090fd4b54e4;p=thirdparty%2Fbugzilla.git

Patch for bug 250259: Fix taint error on disallownew field in editproducts.cgi; patch by GavinS <bugzilla@chimpychompy.org>; r=vladd, a=justdave.
---

diff --git a/editproducts.cgi b/editproducts.cgi
index 6d33c80804..b0e6279e0f 100755
--- a/editproducts.cgi
+++ b/editproducts.cgi
@@ -1092,7 +1092,7 @@ if ($action eq 'update') {
                          milestones READ");
 
     if ($disallownew ne $disallownewold) {
-        $disallownew ||= 0;
+        $disallownew = $disallownew ? 1 : 0;
         SendSQL("UPDATE products
                  SET disallownew=$disallownew
                  WHERE id=$product_id");