ikiwiki

History

Simon McVittie 9cada49ed6 Tell `git revert` not to follow renames Otherwise, we have an authorization bypass vulnerability: rcs_preprevert looks at what changed in the commit we are reverting, not at what would result from reverting it now. In particular, if some files were renamed since the commit we are reverting, a revert of changes that were within the designated subdirectory and allowed by check_canchange() might now affect files that are outside the designated subdirectory or disallowed by check_canchange(). Signed-off-by: Simon McVittie <smcv@debian.org>		2016-12-19 18:21:07 +00:00
..
Plugin	Tell `git revert` not to follow renames	2016-12-19 18:21:07 +00:00
Setup	Silence "used only once: possible typo" warnings for variables that are part of modules' APIs	2016-01-19 11:24:18 +00:00
CGI.pm	cgitemplate: actually remove dead code	2016-12-19 13:20:55 +00:00
Receive.pm	Wrapper: allocate new environment dynamically	2016-05-11 09:18:14 +01:00
Render.pm	improve warning message for multiple sources for page	2016-05-31 15:29:09 -04:00
Setup.pm	Detect plugins with a broken getsetup and warn.	2013-03-04 13:19:05 -04:00
UserInfo.pm	remove deprecated admin prefs	2008-12-24 16:16:03 -05:00
Wrapper.pm	Wrapper: allocate new environment dynamically	2016-05-11 09:18:14 +01:00