diff options
author | lpsolit%gmail.com <> | 2006-01-06 00:14:06 +0100 |
---|---|---|
committer | lpsolit%gmail.com <> | 2006-01-06 00:14:06 +0100 |
commit | 8a751a1e448b17a66a63b5728ffce0b456bc762b (patch) | |
tree | fcb285ed8b47bbcf48bab2bb018b928a7a648728 | |
parent | 8f5a0bbc0bd8b0d47ea09b5a05befd9864ca0d3b (diff) | |
download | bugzilla-8a751a1e448b17a66a63b5728ffce0b456bc762b.tar.gz bugzilla-8a751a1e448b17a66a63b5728ffce0b456bc762b.tar.xz |
Bug 322244: Cookies are incorrectly detainted when logging out - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave
-rw-r--r-- | Bugzilla/Auth/Login/WWW/CGI.pm | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Bugzilla/Auth/Login/WWW/CGI.pm b/Bugzilla/Auth/Login/WWW/CGI.pm index 17a9cfce6..e3fc4c7f4 100644 --- a/Bugzilla/Auth/Login/WWW/CGI.pm +++ b/Bugzilla/Auth/Login/WWW/CGI.pm @@ -217,7 +217,7 @@ sub logout { } } $cookie ||= $cgi->cookie("Bugzilla_logincookie"); - detaint_natural($cookie); + trick_taint($cookie); # These queries use both the cookie ID and the user ID as keys. Even # though we know the userid must match, we still check it in the SQL |