From 037af6890fe6fdb84a08d3c86083e847c90ec0ad Mon Sep 17 00:00:00 2001
From: Aleksander Machniak <alec@alec.pl>
Date: Tue, 22 Oct 2013 08:17:26 -0400
Subject: [PATCH] Fix vulnerability in handling _session argument of utils/save-prefs (#1489382)

---
 skins/larry/ie7hacks.css |    7 ++++++-
 1 files changed, 6 insertions(+), 1 deletions(-)

diff --git a/skins/larry/ie7hacks.css b/skins/larry/ie7hacks.css
index d383c1e..fc47133 100644
--- a/skins/larry/ie7hacks.css
+++ b/skins/larry/ie7hacks.css
@@ -25,6 +25,10 @@
   height: expression((parseInt(document.documentElement.clientHeight)-120)+'px');
 }
 
+#messagepartframe {
+	height: expression((parseInt(this.parentNode.offsetHeight)-1)+'px');
+}
+
 input.button {
 	display: inline;
 	font-size: 90%;
@@ -37,6 +41,7 @@
 .boxfooter .listbutton .inner,
 .attachmentslist li a.delete,
 .attachmentslist li a.cancelupload,
+#contacts-table td.action a,
 .previewheader .iconlink,
 .minimal #taskbar .button-inner {
 	/* workaround for text-indent which also offsets the background image */
@@ -134,7 +139,7 @@
 	padding: 3px 8px;
 }
 
-#quicksearchbar input {
+.searchbox input {
 	padding-top: 4px;
 	padding-bottom: 2px;
 }

--
Gitblit v1.9.1