projects / platform / upstream / perl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 569ba91) | patch
Fix misparsing of maketext strings.
authorBrian Carlson <brian.carlson@cpanel.net>
Wed, 28 Nov 2012 13:54:33 +0000 (08:54 -0500)
committerRicardo Signes <rjbs@cpan.org>
Tue, 4 Dec 2012 19:06:33 +0000 (14:06 -0500)
commit1735f6f53ca19f99c6e9e39496c486af323ba6a8
tree777885e6e83a6012db4e329fd60d1c10a5b72932tree | snapshot
parent569ba91fcdabdc53eb4284f860a25273bd7fe4e1commit | diff
Fix misparsing of maketext strings.

Case 61251: This commit fixes a misparse of maketext strings that could
lead to arbitrary code execution.  Basically, maketext was compiling
bracket notation into functions, but neglected to escape backslashes
inside the content or die on fully-qualified method names when
generating the code.  This change escapes all such backslashes and dies
when a method name with a colon or apostrophe is specified.
AUTHORS diff | blob | history
dist/Locale-Maketext/lib/Locale/Maketext.pm diff | blob | history
Domain: System / Base;