diff options
| author | unknown <serg@serg.mylan> | 2003-08-07 11:16:34 +0200 |
|---|---|---|
| committer | unknown <serg@serg.mylan> | 2003-08-07 11:16:34 +0200 |
| commit | 61f953e88a30169c084e22aa620dcb4f4b73a49a (patch) | |
| tree | 897274ecf4c152f11d6bca8bd082c81600ab6933 /sql/sql_acl.cc | |
| parent | e2a4c4a5d25c5f628415113c3fb12ea87905914a (diff) | |
| download | mariadb-git-61f953e88a30169c084e22aa620dcb4f4b73a49a.tar.gz | |
fixed password buffer overflow
Diffstat (limited to 'sql/sql_acl.cc')
| -rw-r--r-- | sql/sql_acl.cc | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/sql/sql_acl.cc b/sql/sql_acl.cc index f36e39b0645..554417322a4 100644 --- a/sql/sql_acl.cc +++ b/sql/sql_acl.cc @@ -206,10 +206,10 @@ int acl_init(bool dont_read_acl_tables) "Found old style password for user '%s'. Ignoring user. (You may want to restart using --old-protocol)", user.user ? user.user : ""); /* purecov: tested */ } - else if (length % 8) // This holds true for passwords + else if (length % 8 || length > 16) { sql_print_error( - "Found invalid password for user: '%s@%s'; Ignoring user", + "Found invalid password for user: '%s'@'%s'; Ignoring user", user.user ? user.user : "", user.host.hostname ? user.host.hostname : ""); /* purecov: tested */ continue; /* purecov: tested */ |