Change 33143 by [EMAIL PROTECTED] on 2008/01/31 09:16:26

        Subject: Re: [perl #50322] CGITempFile causes "Insecure dependency in 
sprintf" in perl 5.10.0 
        From: "Steffen Mueller via RT" <[EMAIL PROTECTED]>
        Date: Mon, 28 Jan 2008 05:16:19 -0800
        Message-ID: <[EMAIL PROTECTED]>
        
        Fixes [perl #50322]

Affected files ...

... //depot/perl/lib/CGI.pm#75 edit

Differences ...

==== //depot/perl/lib/CGI.pm#75 (text) ====
Index: perl/lib/CGI.pm
--- perl/lib/CGI.pm#74~33129~   2008-01-30 09:11:53.000000000 -0800
+++ perl/lib/CGI.pm     2008-01-31 01:16:26.000000000 -0800
@@ -19,7 +19,7 @@
 #   http://stein.cshl.org/WWW/software/CGI/
 
 $CGI::revision = '$Id: CGI.pm,v 1.240 2007/11/30 18:58:27 lstein Exp $';
-$CGI::VERSION='3.33_02';
+$CGI::VERSION='3.33_03';
 $CGI::VERSION=eval $CGI::VERSION;
 
 
@@ -4048,7 +4048,7 @@
     my $filename;
     find_tempdir() unless -w $TMPDIRECTORY;
     for (my $i = 0; $i < $MAXTRIES; $i++) {
-       last if ! -f ($filename = 
sprintf("${TMPDIRECTORY}${SL}CGItemp%d",$sequence++));
+       last if ! -f ($filename = 
sprintf("\%s${SL}CGItemp%d",$TMPDIRECTORY,$sequence++));
     }
     # check that it is a more-or-less valid filename
     return unless $filename =~ m!^([a-zA-Z0-9_\+ \'\":/.\$\\-]+)$!;
End of Patch.

Reply via email to