diff options
| author | unknown <Sinisa@sinisa.nasamreza.org> | 2002-08-07 21:57:32 +0300 |
|---|---|---|
| committer | unknown <Sinisa@sinisa.nasamreza.org> | 2002-08-07 21:57:32 +0300 |
| commit | d96d2e566570aa2852651618e89d3fbf36909f2f (patch) | |
| tree | 424a30fd65856197e5c7c745c08c67063e3b5def | |
| parent | a3edc742b94a94ff455ff549d7e2a9f5faa346a0 (diff) | |
| download | mariadb-git-d96d2e566570aa2852651618e89d3fbf36909f2f.tar.gz | |
Fix for a security flaw in database hash
| -rw-r--r-- | Docs/manual.texi | 2 | ||||
| -rw-r--r-- | sql/sql_acl.cc | 2 |
2 files changed, 4 insertions, 0 deletions
diff --git a/Docs/manual.texi b/Docs/manual.texi index 52c1887a13e..806c5d34fe0 100644 --- a/Docs/manual.texi +++ b/Docs/manual.texi @@ -46928,6 +46928,8 @@ not yet 100% confident in this code. @appendixsubsec Changes in release 3.23.52 @itemize @bullet @item +Fixed a security bug with empty db column in db table +@item Changed initialisation of @code{RND()} to make it less predicatable. @item Fixed problem with @code{GROUP BY} on result with expression that created a diff --git a/sql/sql_acl.cc b/sql/sql_acl.cc index f0131023157..49baad63d4d 100644 --- a/sql/sql_acl.cc +++ b/sql/sql_acl.cc @@ -242,6 +242,8 @@ int acl_init(bool dont_read_acl_tables) ACL_DB db; update_hostname(&db.host,get_field(&mem, table,0)); db.db=get_field(&mem, table,1); + if (!db.db || !db.db[0]) + continue; db.user=get_field(&mem, table,2); db.access=get_access(table,3); db.access=fix_rights_for_db(db.access); |