diff options
Diffstat (limited to 'dev-php/jpgraph/files')
| -rw-r--r-- | dev-php/jpgraph/files/cve-2009-4422.patch | 31 |
1 files changed, 0 insertions, 31 deletions
diff --git a/dev-php/jpgraph/files/cve-2009-4422.patch b/dev-php/jpgraph/files/cve-2009-4422.patch deleted file mode 100644 index b092d43c9006..000000000000 --- a/dev-php/jpgraph/files/cve-2009-4422.patch +++ /dev/null @@ -1,31 +0,0 @@ -diff -ur jpgraph-3.0.7.orig/src/jpgraph.php jpgraph-3.0.7/src/jpgraph.php ---- jpgraph-3.0.7.orig/src/jpgraph.php 1970-01-01 10:13:08.000000000 +0100 -+++ jpgraph-3.0.7/src/jpgraph.php 2012-06-11 14:55:18.557995018 +0200 -@@ -1286,11 +1286,11 @@ - while( list($key,$value) = each($_GET) ) { - if( is_array($value) ) { - foreach ( $value as $k => $v ) { -- $urlarg .= '&'.$key.'%5B'.$k.'%5D='.urlencode($v); -+ $urlarg .= '&'.urlencode($key).'%5B'.$k.'%5D='.urlencode($v); - } - } - else { -- $urlarg .= '&'.$key.'='.urlencode($value); -+ $urlarg .= '&'.urlencode($key).'='.urlencode($value); - } - } - -@@ -1301,11 +1301,11 @@ - while( list($key,$value) = each($_POST) ) { - if( is_array($value) ) { - foreach ( $value as $k => $v ) { -- $urlarg .= '&'.$key.'%5B'.$k.'%5D='.urlencode($v); -+ $urlarg .= '&'.htmlentities($key).'%5B'.$k.'%5D='.htmlentities($v); - } - } - else { -- $urlarg .= '&'.$key.'='.urlencode($value); -+ $urlarg .= '&'.htmlentities($key).'='.htmlentities($value); - } - } - |