Bug 777398: (CVE-2012-1968) [SECURITY] HTML bugmail exposes information about restricted bugs

r=glob a=LpSolit
author: Frédéric Buclin <LpSolit@gmail.com> 2012-07-26 23:04:08 +0200
committer: Frédéric Buclin <LpSolit@gmail.com> 2012-07-26 23:04:08 +0200
commit: 42565b85b31129431c6087413bc196a7bf601c9f (patch)
tree: d931d0993925932b4a6cce1bc5a3508ef3c2e2b2 /Bugzilla/Hook.pm
parent: 9076d41e60406366a7d9476dda6d137416b07c2d (diff)
download: bugzilla-42565b85b31129431c6087413bc196a7bf601c9f.tar.gz
bugzilla-42565b85b31129431c6087413bc196a7bf601c9f.tar.xz
1 files changed, 6 insertions, 0 deletions
diff --git a/Bugzilla/Hook.pm b/Bugzilla/Hook.pm
index da17946c0..c658989a0 100644
--- a/Bugzilla/Hook.pm
+++ b/Bugzilla/Hook.pm
@@ -426,6 +426,12 @@ Sometimes this is C<undef>, meaning that we are parsing text that is
 not a bug comment (but could still be some other part of a bug, like
 the summary line).
 
+=item C<user>
+
+The L<Bugzilla::User> object representing the user who will see the text.
+This is useful to determine how much confidential information can be displayed
+to the user.
+
 =back
 
 =head2 buglist_columns
author	Frédéric Buclin <LpSolit@gmail.com>	2012-07-26 23:04:08 +0200
committer	Frédéric Buclin <LpSolit@gmail.com>	2012-07-26 23:04:08 +0200
commit	42565b85b31129431c6087413bc196a7bf601c9f (patch)
tree	d931d0993925932b4a6cce1bc5a3508ef3c2e2b2 /Bugzilla/Hook.pm
parent	9076d41e60406366a7d9476dda6d137416b07c2d (diff)
download	bugzilla-42565b85b31129431c6087413bc196a7bf601c9f.tar.gz bugzilla-42565b85b31129431c6087413bc196a7bf601c9f.tar.xz