From aeae2c8476523f1551825afcc17323c4b88d22c5 Mon Sep 17 00:00:00 2001
From: Phill Sparks <me@phills.me.uk>
Date: Tue, 4 Oct 2011 13:11:11 +0100
Subject: [PATCH] Secure extracts

Updated extract calls to use EXTR_SKIP.
---
 laravel/database/grammars/grammar.php | 2 +-
 laravel/session/drivers/cookie.php    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/laravel/database/grammars/grammar.php b/laravel/database/grammars/grammar.php
index 6d652b26..adcbe080 100644
--- a/laravel/database/grammars/grammar.php
+++ b/laravel/database/grammars/grammar.php
@@ -89,7 +89,7 @@ protected function joins(Query $query)
 
 		foreach ($query->joins as $join)
 		{
-			extract($join);
+			extract($join, EXTR_SKIP);
 
 			list($column1, $column2) = array($this->wrap($column1), $this->wrap($column2));
 
diff --git a/laravel/session/drivers/cookie.php b/laravel/session/drivers/cookie.php
index 92f12f62..042831fc 100644
--- a/laravel/session/drivers/cookie.php
+++ b/laravel/session/drivers/cookie.php
@@ -61,7 +61,7 @@ public function load($id)
 	 */
 	public function save($session, $config, $exists)
 	{
-		extract($config);
+		extract($config, EXTR_SKIP);
 
 		$payload = $this->crypter->encrypt(serialize($session));