This is my quick fixes for 2.03 regarding the tainted data.
*** /usr/local/src/cpan/build/Template-Toolkit-2.03/lib/Template/Provider.pm
Fri Jun 15 16:30:56 2001
--- /usr/local/share/perl/5.6.0/Template/Provider.pm Sun Jun 17 16:36:14
2001***************
*** 714,720 ****
if (!defined($error)) {
# set atime and mtime of newly compiled file
! utime($data->{ time }, $data->{ time }, $compfile);
}
}
--- 714,722 ----
if (!defined($error)) {
# set atime and mtime of newly compiled file
! my( $ccompfile ) = $compfile =~ /^([\w\-\.\/]+)$/ or die;
! my( $ctime ) = $data->{ time } =~ /^(\d+)$/ or die;
! utime($ctime, $ctime, $ccompfile);
}
}
*** /usr/local/src/cpan/build/Template-Toolkit-2.03/lib/Template/Document.pm
Fri Jun 15 16:30:56 2001
--- /usr/local/share/perl/5.6.0/Template/Document.pm Sun Jun 17 16:32:28
2001***************
*** 243,249 ****
} keys %$metadata);
local *CFH;
! open(CFH, ">$file") or do {
$ERROR = $!;
return undef;
};
--- 243,250 ----
} keys %$metadata);
local *CFH;
! my( $cfile ) = $file =~ /^([\w\.\-\/]+)$/ or die;
! open(CFH, ">$cfile") or do {
$ERROR = $!;
return undef;
};
--
/ Jonas - http://jonas.liljegren.org/myself/en/index.html
