From a3540a32c6490c6d99d5128e048cb522d9c00a13 Mon Sep 17 00:00:00 2001
From: Reed Loden <reed@reedloden.com>
Date: Wed, 10 Nov 2010 18:40:08 -0800
Subject: [PATCH] Bug 591165: (CVE-2010-2761) [SECURITY] Add CGI.pm v3.50 as an
 optional module in order to address header injection vulnerability. [r=mkanat
 a=mkanat]

---
 Bugzilla/Install/Requirements.pm | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/Bugzilla/Install/Requirements.pm b/Bugzilla/Install/Requirements.pm
index b21595c831..1563597d69 100644
--- a/Bugzilla/Install/Requirements.pm
+++ b/Bugzilla/Install/Requirements.pm
@@ -280,6 +280,15 @@ sub OPTIONAL_MODULES {
         version => '1.999022',
         feature => 'mod_perl'
     },
+
+    {
+        package => 'CGI.pm',
+        module  => 'CGI',
+        # 3.50 fixes a security problem that affects Bugzilla.
+        # (bug 591165)
+        version => '3.50',
+        feature => 'Recommended important security fix'
+    },
     );
 
     my $all_modules = _get_extension_requirements(
-- 
2.47.2