Bug in Data::FormValidator::Results: msg#00120

Subject:	Bug in Data::FormValidator::Results

Hi all,

think I found a bug in _constraint_check_match() in
Data::FormValidator::Results bound into C::A via
CGI::Application::ValidateRM.

This subroutine checks the return value of user defined untainting
coderefs for false in the broad sense, not for undef. So if your field
containts the number zero and you check it using /(\d+)/, the return
value will be this number zero. _constraint_check_match interprets this
return value as false, so the check fails.

Hope, I didn't miss something obvious.

Best regards,

Bodo

---------------------------------------------------------------------
Web Archive:  http://www.mail-archive.com/cgiapp@xxxxxxxxxxxxxxxxx/
              http://marc.theaimsgroup.com/?l=cgiapp&r=1&w=2
To unsubscribe, e-mail: cgiapp-unsubscribe@xxxxxxxxxxxxxxxxx
For additional commands, e-mail: cgiapp-help@xxxxxxxxxxxxxxxxx

Special educational offers, white papers, webcasts, podcasts

WEBCAST: Offshore software development: Making it a success with agile practices. Register Now:

WEBCAST: IBM WebSphere Portal V6.1 Web 2.0 Capabilities. Register Now:

WHITE PAPER: Best practices for software analysis (Best Practices)

DOWNLOAD NEW E-KIT: Download the IBM pureXML Developers Kit:

DOWNLOAD: Rational Trial Software – Rational Team Concert Free Information:

TUTORIAL: Debug iPhone Web applications with Eclipse

Try Searching:
servers, voip, java, networking, microsoft ...

<Prev in Thread]	Current Thread	[Next in Thread>

Previous by Date:	CGI::Application 3.22 released, Mark Stosberg
Next by Date:	Re: Bug in Data::FormValidator::Results, Mark Stosberg
Previous by Thread:	CGI::Application 3.22 released, Mark Stosberg
Next by Thread:	Re: Bug in Data::FormValidator::Results, Mark Stosberg
Indexes:	[Date] [Thread] [Top] [All Lists]

^^^ ADDITIONAL NAVIGATION ^^^

Recently Viewed:
user-groups.lin... os.netbsd.ports... web.webmin.tran... version-control... text.refdb.gene... sourcemage.grim... audio.emagic.so... lang.eiffel.gob... yellowdog.gener... xfree86.newbie/... programming.dom... games.freeciv.c... debian.devel.ww... jakarta.gump/20... emulators.freed... nfs/2002-04/msg... mail.spam.tmda.... kernel.ck/2005-... freebsd.devel.c... bug-tracking.bu... hardware.avr.gc... qnx.openqnx.dev... cms.cold-fusion... redhat.fedora.p... ietf.ipv6/2002-...

Home | blog view | USPTO Patent Archive (NEW!) | advertise | OSDir is an inevitable website. super tiny logo