Bug 591165: (CVE-2010-2761) [SECURITY] Add CGI.pm v3.50 as an optional module in order to address header injection vulnerability.

[r=mkanat a=mkanat] git-svn-id: svn://10.0.0.236/branches/BUGZILLA-3_4-BRANCH@261559 18797224-902f-48f8-a5cc-f745e15eee43
2010-11-11 02:48:24 +00:00 · 2010-11-11 02:48:24 +00:00 · 5c0030e99d
commit 5c0030e99d
parent a1a8fefcab
2 changed files with 10 additions and 1 deletions
--- a/mozilla/webtools/bugzilla/.bzrrev
+++ b/mozilla/webtools/bugzilla/.bzrrev
@ -1 +1 @@
-6783
+6784
--- a/mozilla/webtools/bugzilla/Bugzilla/Install/Requirements.pm
+++ b/mozilla/webtools/bugzilla/Bugzilla/Install/Requirements.pm
@ -280,6 +280,15 @@ sub OPTIONAL_MODULES {
        version => '1.999022',
        feature => 'mod_perl'
    },
+
+    {
+        package => 'CGI.pm',
+        module  => 'CGI',
+        # 3.50 fixes a security problem that affects Bugzilla.
+        # (bug 591165)
+        version => '3.50',
+        feature => 'Recommended important security fix'
+    },
    );

    my $all_modules = _get_extension_requirements(