Go to:
Gentoo Home
Documentation
Forums
Lists
Bugs
Planet
Store
Wiki
Get Gentoo!
Gentoo's Bugzilla – Attachment 62621 Details for
Bug 97648
www-apps/tikiwiki is affected by XML_RPC PHP flaw (CAN-2005-1921)
Home
|
New
–
[Ex]
|
Browse
|
Search
|
Privacy Policy
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
tikiwiki.patch
tikiwiki.patch (text/plain), 1.07 KB, created by
Thierry Carrez (RETIRED)
on 2005-07-04 13:46:13 UTC
(
hide
)
Description:
tikiwiki.patch
Filename:
MIME Type:
Creator:
Thierry Carrez (RETIRED)
Created:
2005-07-04 13:46:13 UTC
Size:
1.07 KB
patch
obsolete
>--- tikiwiki-1.8.5/lib/xmlrpc.inc.old 2005-07-04 22:45:18.000000000 +0200 >+++ tikiwiki-1.8.5/lib/xmlrpc.inc 2002-10-15 17:42:38.000000000 +0200 >@@ -160,7 +160,7 @@ > $_xh[$parser]['qt']=0; > break; > case "NAME": >- $_xh[$parser]['st'].='"'; $_xh[$parser]['ac']=""; >+ $_xh[$parser]['st'].="'"; $_xh[$parser]['ac']=""; > break; > case "FAULT": > $_xh[$parser]['isf']=1; >@@ -225,7 +225,7 @@ > $_xh[$parser]['cm']--; > break; > case "NAME": >- $_xh[$parser]['st'].= $_xh[$parser]['ac'] . '" => '; >+ $_xh[$parser]['st'].= $_xh[$parser]['ac'] . "' => "; > break; > case "BOOLEAN": > // special case here: we translate boolean 1 or 0 into PHP >@@ -246,7 +246,7 @@ > // we use double quotes rather than single so backslashification works OK > $_xh[$parser]['st'].="\"". $_xh[$parser]['ac'] . "\""; > } else if ($_xh[$parser]['qt']==2) { >- $_xh[$parser]['st'].='base64_decode("'. $_xh[$parser]['ac'] . '")'; >+ $_xh[$parser]['st'].="base64_decode('". $_xh[$parser]['ac'] . "')"; > } else if ($name=="BOOLEAN") { > $_xh[$parser]['st'].=$_xh[$parser]['ac']; > } else {
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=62621">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 97648
:
62621
|
62725
