diff options
author | Frédéric Buclin <LpSolit@gmail.com> | 2012-07-26 23:01:12 +0200 |
---|---|---|
committer | Frédéric Buclin <LpSolit@gmail.com> | 2012-07-26 23:01:12 +0200 |
commit | 4eb4a65a1a945e558086603e75b367bc7bd1d971 (patch) | |
tree | 4dec8749aac061a667ccf0a504995eab6ae4618e /Bugzilla/Hook.pm | |
parent | 6bdf0f7971bd726b803858dce8326b9af9c62b48 (diff) | |
download | bugzilla-4eb4a65a1a945e558086603e75b367bc7bd1d971.tar.gz bugzilla-4eb4a65a1a945e558086603e75b367bc7bd1d971.tar.xz |
Bug 777398: (CVE-2012-1968) [SECURITY] HTML bugmail exposes information about restricted bugs
r=glob a=LpSolit
Diffstat (limited to 'Bugzilla/Hook.pm')
-rw-r--r-- | Bugzilla/Hook.pm | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/Bugzilla/Hook.pm b/Bugzilla/Hook.pm index 27184c2e4..730170663 100644 --- a/Bugzilla/Hook.pm +++ b/Bugzilla/Hook.pm @@ -411,6 +411,12 @@ Sometimes this is C<undef>, meaning that we are parsing text that is not a bug comment (but could still be some other part of a bug, like the summary line). +=item C<user> + +The L<Bugzilla::User> object representing the user who will see the text. +This is useful to determine how much confidential information can be displayed +to the user. + =back =head2 bug_url_sub_classes |