Skip Menu |

This queue is for tickets about the HTML-Scrubber CPAN distribution.

Report information
The Basics
Id: 26538
Status: resolved
Priority: 0/
Queue: HTML-Scrubber
People
Owner: Nobody in particular
Requestors: ANDK [...] cpan.org
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: 0.08
Fixed in: (no value)

History Show all quoted text
  Sun Apr 22 03:35:52 2007 ANDK [...] cpan.org - Ticket created
Subject: predictable file in /tmp
t/06_scrub_file...... # Failed test 'scrub($html,$tmpfile=/tmp/html-scrubber.test.html)' # at t/06_scrub_file.t line 25. # got: 'Error: $@= $!=Keine Berechtigung' # expected: '1' can't write to /tmp/html-scrubber.test.html at t/06_scrub_file.t line 30. # Looks like you planned 10 tests but only ran 3. # Looks like you failed 1 test of 3 run. # Looks like your test died just after 3. dubious Test returned status 255 (wstat 65280, 0xff00) DIED. FAILED tests 3-10 Failed 8/10 tests, 20.00% okay The first bug is that the tmp file was not cleaned up and left ove from a different user in /tmp/. Generally it is considered a security issue to put predictable files into /tmp. File::Temp should be used instead. Thanks,
  Fri Nov 02 01:23:34 2007 ANDK [...] cpan.org - Correspondence added
A patch is now in my CPAN directory ANDK/patches/HTML-Scrubber-0.08-ANDK-01.patch.gz Could you please consider applying it? Thanks,
  Fri Nov 02 01:23:36 2007 ANDK [...] cpan.org - Status changed from 'new' to 'open'
  Wed Apr 22 17:35:06 2009 MARKSTOS [...] cpan.org - Correspondence added
On Fri Nov 02 01:23:34 2007, ANDK wrote: Show quoted text
> A patch is now in my CPAN directory > > ANDK/patches/HTML-Scrubber-0.08-ANDK-01.patch.gz > > Could you please consider applying it?
I second the suggestion of applying and releasing this security patch.
  Wed Jun 17 05:20:46 2009 felix.ostmann [...] thewar.de - Correspondence added
On Mi. 22. Apr. 2009, 17:35:06, MARKSTOS wrote: Show quoted text
> On Fri Nov 02 01:23:34 2007, ANDK wrote:
> > A patch is now in my CPAN directory > > > > ANDK/patches/HTML-Scrubber-0.08-ANDK-01.patch.gz > > > > Could you please consider applying it?
> > I second the suggestion of applying and releasing this security patch.
still very important!
  Fri Apr 01 11:01:29 2011 nigel.metheringham [...] gmail.com - Correspondence added
This test has been reworked in commit 4fc658d3a8126bdaaeb2 https://github.com/nigelm/html- scrubber/commit/4fc658d3a8126bdaaeb2931d5cd474ebe11fb09d
  Fri Apr 01 11:01:30 2011 nigel.metheringham [...] gmail.com - Status changed from 'open' to 'resolved'