From: Brian Fraser Date: Wed, 1 Feb 2012 02:41:16 +0000 (-0300) Subject: perlsec: #109408 X-Git-Tag: upstream/5.20.0~6225^2~9 X-Git-Url: http://review.tizen.org/git/?a=commitdiff_plain;h=dde0c55834d928a105603c1c12834b19edb60ed7;p=platform%2Fupstream%2Fperl.git perlsec: #109408 --- diff --git a/pod/perlsec.pod b/pod/perlsec.pod index d8470ec..634024d 100644 --- a/pod/perlsec.pod +++ b/pod/perlsec.pod @@ -134,10 +134,8 @@ For example: @files = <*.c>; # insecure (uses readdir() or similar) @files = glob('*.c'); # insecure (uses readdir() or similar) - # In Perl releases older than 5.6.0 the <*.c> and glob('*.c') would - # have used an external program to do the filename expansion; but in - # either case the result is tainted since the list of filenames comes - # from outside of the program. + # In either case, the results of glob are tainted, since the list of + # filenames comes from outside of the program. $bad = ($arg, 23); # $bad will be tainted $arg, `true`; # Insecure (although it isn't really)