From efb537b7761038c6f9f06ae89e1cf51b24887369 Mon Sep 17 00:00:00 2001
From: Vitaliy Filippov <vitalif@yourcmc.ru>
Date: Fri, 18 Apr 2014 15:17:42 +0400
Subject: [PATCH] trick_taint in setter

---
 Bugzilla/Bug.pm | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/Bugzilla/Bug.pm b/Bugzilla/Bug.pm
index 696ab18df..e28145347 100644
--- a/Bugzilla/Bug.pm
+++ b/Bugzilla/Bug.pm
@@ -1481,7 +1481,11 @@ sub set
     {
         $self->make_dirty;
         $value = $self->$setter($value, $field);
-        $self->{$field} = $value if defined $value;
+        if (defined $value)
+        {
+            trick_taint($value);
+            $self->{$field} = $value;
+        }
         $self->_check_field_permission($field);
         return $value;
     }