From 3005b0990ed40d8b2b8d963eb26aa0f35c471416 Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Sat, 5 Sep 2009 05:45:45 +0000
Subject: - Patch ##239676 by v1nce, pwolanin, mfb: fixed SA-CORE-2009-001:
 missing validation for hook_user().

---
 modules/user/user.module | 1 +
 1 file changed, 1 insertion(+)

(limited to 'modules/user/user.module')

diff --git a/modules/user/user.module b/modules/user/user.module
index c0cead24a..e2aa808c8 100644
--- a/modules/user/user.module
+++ b/modules/user/user.module
@@ -1950,6 +1950,7 @@ function user_edit_form(&$form_state, $uid, $edit, $register = FALSE) {
       '#size' => 48,
       '#description' => t('Your virtual face or picture. Maximum dimensions are %dimensions pixels and the maximum size is %size kB.', array('%dimensions' => variable_get('user_picture_dimensions', '85x85'), '%size' => variable_get('user_picture_file_size', '30'))) . ' ' . variable_get('user_picture_guidelines', ''),
     );
+    $form['#validate'][] = 'user_profile_form_validate';
     $form['#validate'][] = 'user_validate_picture';
   }
   $form['#uid'] = $uid;
-- 
cgit v1.2.3