]> git.donarmstrong.com Git - debbugs.git/blobdiff - Debbugs/CGI/Pkgreport.pm
projects / debbugs.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
we know that the statement is ok; use $1 to avoid taint issues
[debbugs.git] / Debbugs / CGI / Pkgreport.pm
diff --git a/Debbugs/CGI/Pkgreport.pm b/Debbugs/CGI/Pkgreport.pm
index d14997930ab82facf0ef84dbd711a51d21abd5ee..523dbbb90a6a909d9043a4e949836dc9c35624b6 100644 (file)
--- a/Debbugs/CGI/Pkgreport.pm
+++ b/Debbugs/CGI/Pkgreport.pm
@@ -486,7 +486,7 @@ sub parse_order_statement_into_boolean {
               }exg;
     # check that the parsed statement is just valid boolean statements
     if ($statement =~ /^([01\(\)\&\|]+)$/) {
-        return eval "$statement";
+        return eval "$1";
     } else {
         # this is an invalid boolean statement
         return 0;
Debian bug tracker development