merge revision(s) 28997:

* lib/webrick/httpresponse.rb (WEBrick::HTTPResponse#set_error): Fix for possible cross-site scripting (CVE-2010-0541). Found by Apple, reported by Hideki Yamane. Patch by Hirokazu Nishio <nishio.hirokazu AT gmail.com>. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_1_8@29002 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2010-08-16 03:41:12 +0000
committer: shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2010-08-16 03:41:12 +0000
commit: 952b83553bcf6e6b259ea074e49029fa2628a904 (patch)
tree: ecde9c646a52e747d9f4f3a51c1b35b5e7c23c10 /lib
parent: 39909bdd0c3481ab6ead132ff38153d3b7ae1b69 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/webrick/httpresponse.rb b/lib/webrick/httpresponse.rb
index df78daac13..72257f24c9 100644
--- a/lib/webrick/httpresponse.rb
+++ b/lib/webrick/httpresponse.rb
@@ -209,7 +209,7 @@ module WEBrick
         @keep_alive = false
         self.status = HTTPStatus::RC_INTERNAL_SERVER_ERROR
       end
-      @header['content-type'] = "text/html"
+      @header['content-type'] = "text/html; charset=ISO-8859-1"
 
       if respond_to?(:create_error_page)
         create_error_page()
author	shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2010-08-16 03:41:12 +0000
committer	shyouhei <shyouhei@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2010-08-16 03:41:12 +0000
commit	952b83553bcf6e6b259ea074e49029fa2628a904 (patch)
tree	ecde9c646a52e747d9f4f3a51c1b35b5e7c23c10 /lib
parent	39909bdd0c3481ab6ead132ff38153d3b7ae1b69 (diff)