diff options
| author | chinsan <chinsan@FreeBSD.org> | 2009-01-09 22:50:26 +0800 |
|---|---|---|
| committer | chinsan <chinsan@FreeBSD.org> | 2009-01-09 22:50:26 +0800 |
| commit | fa956276741de41bffe28eeb4a844b26e06fc65b (patch) | |
| tree | 23621e78371a90cfd5551c0b836becf296e38dcf | |
| parent | f1383f5bfc616bd5726fc77cb52069f29f5bb7b6 (diff) | |
| download | freebsd-ports-gnome-fa956276741de41bffe28eeb4a844b26e06fc65b.tar.gz freebsd-ports-gnome-fa956276741de41bffe28eeb4a844b26e06fc65b.tar.zst freebsd-ports-gnome-fa956276741de41bffe28eeb4a844b26e06fc65b.zip | |
- Sync the CVE patch with upstream
Reported by: Eygene Ryabinkin <rea-fbsd@codelabs.ru>
| -rw-r--r-- | www/awstats/files/patch-CVE-2008-3714 | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/www/awstats/files/patch-CVE-2008-3714 b/www/awstats/files/patch-CVE-2008-3714 index 9b26e66f6afd..ad5329d1aec2 100644 --- a/www/awstats/files/patch-CVE-2008-3714 +++ b/www/awstats/files/patch-CVE-2008-3714 @@ -12,11 +12,14 @@ See also: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=495432 --- wwwroot/cgi-bin/awstats.pl.old 2009-01-04 13:50:42.000000000 +0800 +++ wwwroot/cgi-bin/awstats.pl 2009-01-04 13:52:43.000000000 +0800 -@@ -7523,6 +7523,7 @@ +@@ -7521,8 +7521,9 @@ + sub DecodeEncodedString { + my $stringtodecode = shift; $stringtodecode =~ tr/\+/ /s; - $stringtodecode =~ s/%22//g; +- $stringtodecode =~ s/%22//g; $stringtodecode =~ s/%([A-F0-9][A-F0-9])/pack("C", hex($1))/ieg; + $stringtodecode =~ s/["']//g; ++ return $stringtodecode; } |