[Patches] [PATCH] [3.4.x] Bug 6629 fix for vulnerability

koha-patchbot at kohaaloha.com koha-patchbot at kohaaloha.com
Fri Nov 25 20:40:03 NZDT 2011


From: Chris Cormack <chrisc at catalyst.net.nz>
Date: Fri, 25 Nov 2011 20:38:35 +1300
Subject: [PATCH] [3.4.x] Bug 6629 fix for vulnerability

---
 C4/Templates.pm |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/C4/Templates.pm b/C4/Templates.pm
index eaec07d..2820af1 100644
--- a/C4/Templates.pm
+++ b/C4/Templates.pm
@@ -180,7 +180,7 @@ sub themelanguage_lite {
     # But, if there's a cookie set, obey it
     $lang = $query->cookie('KohaOpacLanguage')
       if ( defined $query and $query->cookie('KohaOpacLanguage') );
-
+    $lang =~ s/[^a-zA-Z_-]*//; 
     # Fall back to English
     my @languages;
     if ( $interface eq 'intranet' ) {
-- 
1.7.5.4


More information about the Patches mailing list