aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRobin H. Johnson <robbat2@gentoo.org>2018-01-07 21:35:02 -0800
committerRobin H. Johnson <robbat2@gentoo.org>2018-01-07 21:36:03 -0800
commitc5135a2d5151108b53de18e77b7f92536cf8adc6 (patch)
tree5a2655a129d88e067d6ca0f9722778651e3c9d39
parentBugzilla/Constants: HTTP Strict Transport Security should be least 6 months p... (diff)
downloadbugzilla-c5135a2d5151108b53de18e77b7f92536cf8adc6.tar.gz
bugzilla-c5135a2d5151108b53de18e77b7f92536cf8adc6.tar.bz2
bugzilla-c5135a2d5151108b53de18e77b7f92536cf8adc6.zip
buglist: tell taint check that bugid is safe.
Bug: https://bugs.gentoo.org/643854 Signed-off-by: Robin H. Johnson <robbat2@gentoo.org>
-rwxr-xr-xbuglist.cgi1
1 files changed, 1 insertions, 0 deletions
diff --git a/buglist.cgi b/buglist.cgi
index daee34c9b..719bb9639 100755
--- a/buglist.cgi
+++ b/buglist.cgi
@@ -831,6 +831,7 @@ foreach my $row (@$data) {
push(@bugs, $bug);
# Add id to list for checking for bug privacy later
+ detaint_natural($bug->{'bug_id'});
push(@bugidlist, $bug->{'bug_id'});
# Compute time tracking info.