From f96ee72fb07961faf1ee950fcb66c2dfa0589694 Mon Sep 17 00:00:00 2001
From: unknown <anozdrin/alik@alik.>
Date: Wed, 23 Aug 2006 21:31:00 +0400
Subject: Fix for BUG#16899: Possible buffer overflow in handling of
 DEFINER-clause

User name (host name) has limit on length. The server code relies on these
limits when storing the names. The problem was that sometimes these limits
were not checked properly, so that could lead to buffer overflow.

The fix is to check length of user/host name in parser and if string is too
long, throw an error.


mysql-test/r/grant.result:
  Updated result file.
mysql-test/r/sp.result:
  Updated result file.
mysql-test/r/trigger.result:
  Updated result file.
mysql-test/r/view.result:
  Updated result file.
mysql-test/t/grant.test:
  Added test for BUG#16899.
mysql-test/t/sp.test:
  Added test for BUG#16899.
mysql-test/t/trigger.test:
  Added test for BUG#16899.
mysql-test/t/view.test:
  Added test for BUG#16899.
sql/mysql_priv.h:
  Added prototype for new function.
sql/share/errmsg.txt:
  Added new resources.
sql/sql_acl.cc:
  Remove outdated checks.
sql/sql_parse.cc:
  Add a new function for checking string length.
sql/sql_yacc.yy:
  Check length of user/host name.
---
 BitKeeper/etc/collapsed | 1 +
 1 file changed, 1 insertion(+)

(limited to 'BitKeeper')

diff --git a/BitKeeper/etc/collapsed b/BitKeeper/etc/collapsed
index 8b90deae622..c008b9f18fc 100644
--- a/BitKeeper/etc/collapsed
+++ b/BitKeeper/etc/collapsed
@@ -1 +1,2 @@
 44d03f27qNdqJmARzBoP3Is_cN5e0w
+44ec850ac2k4y2Omgr92GiWPBAVKGQ
-- 
cgit v1.2.1