coar 99/10/14 11:38:52
Modified: . bugdb.cgi
Log:
Assume that internal calls to timestamp() are safe; have it
untaint what it receives. (Fixes breakage caused by making -T
the default.)
Revision Changes Path
1.46 +2 -0 apache-site/bugdb.cgi
Index: bugdb.cgi
===================================================================
RCS file: /home/cvs/apache-site/bugdb.cgi,v
retrieving revision 1.45
retrieving revision 1.46
diff -u -r1.45 -r1.46
--- bugdb.cgi 1999/10/09 05:00:07 1.45
+++ bugdb.cgi 1999/10/14 18:38:49 1.46
@@ -667,6 +667,8 @@
sub timestamp {
local($fname) = shift(@_);
+ $fname =~ /(.*)/;
+ $fname = $1;
open(TIMESTAMP, "$LSPROG -l $fname|")
|| die "Error: can't record the timestamp of the PR ($fname)";
($_=<TIMESTAMP>)=~ /\s(\S+\s+\S+\s+\S+)\s+\S+$/
