Discussion:
Bug#1083186: cdimage.debian.org: Perl warning for find_file.cgi
(too old to reply)
Philipp Kern
2024-10-02 20:40:02 UTC
Permalink
Package: cdimage.debian.org
X-Debbugs-Cc: debian-***@lists.debian.org

Hi,
CGI::param called in list context from /srv/cdimage-search.debian.org/cgi-bin/find_file.cgi line 316, this can lead to vulnerabilities. See the warning in "Fetching the value or values of a single named parameter" at /usr/share/perl5/CGI.pm line 414.
That's printed on every invocation of the script, so it'd be good to fix
it. It is not invoked super often, but a clean error log would be better. :)

Kind regards and thanks
Philipp Kern
Debian Bug Tracking System
2024-10-03 21:30:01 UTC
Permalink
Your message dated Thu, 3 Oct 2024 22:23:28 +0100
with message-id <***@tack.einval.com>
and subject line Re: Bug#1083186: cdimage.debian.org: Perl warning for find_file.cgi
has caused the Debian Bug report #1083186,
regarding cdimage.debian.org: Perl warning for find_file.cgi
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ***@bugs.debian.org
immediately.)
--
1083186: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1083186
Debian Bug Tracking System
Contact ***@bugs.debian.org with problems
Loading...