From 935031c50d693cb8d8a1c4c8e1567df6310766da Mon Sep 17 00:00:00 2001
From: Frédéric Buclin <LpSolit@gmail.com>
Date: Wed, 18 Apr 2012 18:47:02 +0200
Subject: Bug 728639: (CVE-2012-0465) [SECURITY] User lockout policy can be
 bypassed by altering the X-FORWARDED-FOR header r=glob a=LpSolit

---
 Bugzilla/Config/Advanced.pm | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'Bugzilla/Config/Advanced.pm')

diff --git a/Bugzilla/Config/Advanced.pm b/Bugzilla/Config/Advanced.pm
index faab6bbbd..941cefc4f 100644
--- a/Bugzilla/Config/Advanced.pm
+++ b/Bugzilla/Config/Advanced.pm
@@ -46,7 +46,8 @@ use constant get_param_list => (
   {
    name => 'inbound_proxies',
    type => 't',
-   default => ''
+   default => '',
+   checker => \&check_ip
   },
 
   {
-- 
cgit v1.2.3-24-g4f1b