You are here: Foswiki>Tasks Web>Item607 (02 Jan 2009, KennethLavrsen)Edit Attach

Item607: filename untaint in configure::EXTEND is more restrictive than intended

pencil
Priority: Urgent
Current State: Closed
Released In: 1.0.0
Target Release: patch
Applies To: Engine
Component:
Branches:
Reported By: Foswiki:Main.SvenDowideit
Waiting For:
Last Change By: KennethLavrsen
it seems that \w does not include '-'

and more frustratingly, configure does not report that what it installed is not the same as whats in the MANIFEST (Item608) . so the user is pretty much in the dark.

-- SvenDowideit - 30 Dec 2008

\w also does not include _; should that be added, too? anything else?

\w does include _

I was through the same code the other day and added the , also for ,v files.

I think this can be closed. Sven also looked at the code and commented on my changes. review is done

ItemTemplate edit

Summary filename untaint in configure::EXTEND is more restrictive than intended
ReportedBy Foswiki:Main.SvenDowideit
Codebase
SVN Range Foswiki-1.0.0-beta2, Sun, 28 Dec 2008, build 1638
AppliesTo Engine
Component
Priority Urgent
CurrentState Closed
WaitingFor
Checkins distro:b66a664f3aae
TargetRelease patch
ReleasedIn 1.0.0
Edit  | Attach | Print version | History: r7 < r6 < r5 < r4 | Backlinks | View wiki text | Edit wiki text | More topic actions
Topic revision: r7 - 02 Jan 2009, KennethLavrsen
The copyright of the content on this website is held by the contributing authors, except where stated elsewhere. See Copyright Statement. Creative Commons License    Legal Imprint    Privacy Policy