diff options
author | Frédéric Buclin <LpSolit@gmail.com> | 2012-01-31 16:39:50 +0100 |
---|---|---|
committer | Frédéric Buclin <LpSolit@gmail.com> | 2012-01-31 16:39:50 +0100 |
commit | 6c81a8674ac77562584d5033561f8b4d947f23bb (patch) | |
tree | 3f3075c09ff6c31cd4901a6182f15ff6ec87cdf2 /template/en/default/global/user-error.html.tmpl | |
parent | 907acd417423fe4550d31afe0b16ee15b2ebad18 (diff) | |
download | bugzilla-6c81a8674ac77562584d5033561f8b4d947f23bb.tar.gz bugzilla-6c81a8674ac77562584d5033561f8b4d947f23bb.tar.xz |
Bug 714472: (CVE-2012-0448) [SECURITY] utf8 homoglyphs are allowed in email addresses, which could allow an attacker to be CC'ed to private bugs by accident
r=glob a=LpSolit
Diffstat (limited to 'template/en/default/global/user-error.html.tmpl')
-rw-r--r-- | template/en/default/global/user-error.html.tmpl | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/template/en/default/global/user-error.html.tmpl b/template/en/default/global/user-error.html.tmpl index 723f92042..dc0a94ac7 100644 --- a/template/en/default/global/user-error.html.tmpl +++ b/template/en/default/global/user-error.html.tmpl @@ -851,9 +851,8 @@ [% ELSE %] [%+ Param('emailregexpdesc') FILTER html_light %] [% END %] - It must also not contain any of these special characters: - <tt>\ ( ) & < > , ; : " [ ]</tt>, or any whitespace. - + It also must not contain any illegal characters. + [% ELSIF error == "illegal_frequency" %] [% title = "Too Frequent" %] Unless you are an administrator, you may not create series which are |