diff options
| author |   Stuart Herbert <stuart@gentoo.org> | 2005-11-20 10:41:41 +0000 |
|---|---|---|
| committer | Stuart Herbert <stuart@gentoo.org> | 2005-11-20 10:41:41 +0000 |
| commit | 5bc7cbe816550f2b3db1b6c06bed7729b73c3854 (patch) | |
| tree | d14e39203dca380afb9c9ab9ea930b231a256995 /www-apps/mambo/files | |
| parent | Working to help clean up dev-perl stuff. Version bump upstream. (diff) | |
| download | gentoo-2-5bc7cbe816550f2b3db1b6c06bed7729b73c3854.tar.gz gentoo-2-5bc7cbe816550f2b3db1b6c06bed7729b73c3854.tar.bz2 gentoo-2-5bc7cbe816550f2b3db1b6c06bed7729b73c3854.zip | |
Fix for security bug #112968
(Portage version: 2.0.51.22-r2)
Diffstat (limited to 'www-apps/mambo/files')
| -rw-r--r-- | www-apps/mambo/files/digest-mambo-4.5.2.3-r1 | 1 | ||||
| -rw-r--r-- | www-apps/mambo/files/mambo-4.5.2.3-globals_overwrite.patch | 21 |
2 files changed, 22 insertions, 0 deletions
diff --git a/www-apps/mambo/files/digest-mambo-4.5.2.3-r1 b/www-apps/mambo/files/digest-mambo-4.5.2.3-r1 new file mode 100644 index 000000000000..2d9a21f68786 --- /dev/null +++ b/www-apps/mambo/files/digest-mambo-4.5.2.3-r1 @@ -0,0 +1 @@ +MD5 6f4f934bc26ceed05137a23a1dcf8a54 mamboV4.5.2.3-Stable.tar.gz 1561319 diff --git a/www-apps/mambo/files/mambo-4.5.2.3-globals_overwrite.patch b/www-apps/mambo/files/mambo-4.5.2.3-globals_overwrite.patch new file mode 100644 index 000000000000..c4df9686d4ef --- /dev/null +++ b/www-apps/mambo/files/mambo-4.5.2.3-globals_overwrite.patch @@ -0,0 +1,21 @@ +--- globals.php 2005-06-01 23:24:00.000000000 -0400 ++++ globals.php 2005-11-19 01:10:28.000000000 -0500 +@@ -30,10 +30,14 @@ + while(list($key,$value)=each($_SERVER)) $GLOBALS[$key]=$value; + while(list($key,$value)=@each($_SESSION)) $GLOBALS[$key]=$value; + foreach($_FILES as $key => $value){ +- $GLOBALS[$key]=$_FILES[$key]['tmp_name']; +- foreach($value as $ext => $value2){ +- $key2 = $key . '_' . $ext; +- $GLOBALS[$key2] = $value2; ++ if(!isset($GLOBALS[$key])) { ++ $GLOBALS[$key]=$_FILES[$key]['tmp_name']; ++ foreach($value as $ext => $value2){ ++ $key2 = $key . '_' . $ext; ++ if(!isset($GLOBALS[$key2])) { ++ $GLOBALS[$key2] = $value2; ++ } ++ } + } + } + } |