Opened 5 years ago

Closed 4 years ago

Last modified 4 years ago

#7728 closed defect (bug) (duplicate)

Consolidate contiguous whitespace in usernames

Reported by: snakefoot Owned by: anonymous
Priority: normal Milestone:
Component: Security Version:
Severity: normal Keywords: security has-patch tested commit dev-feedback
Cc:

Description

MySQL and SQL Column Truncation Vulnerabilities

See http://www.suspekt.org/2008/08/18/mysql-and-sql-column-truncation-vulnerabilities/

Attachments (1)

sanitize_user.patch (529 bytes) - added by snakefoot 5 years ago.
Consolidate contiguous whitespace in sanitize_user

Download all attachments as: .zip

Change History (9)

snakefoot5 years ago

Consolidate contiguous whitespace in sanitize_user

comment:1   snakefoot5 years ago

Duplicate of #7710

comment:2   snakefoot5 years ago

  • Component changed from General to Security

comment:3   DD325 years ago

To quote g30rg3x from #7710

This problem was already addressed in changeset [8748] (for 2.6.x) and in [8704] (for trunk).

I guess 2.0 needs it thanks to its security-patch ongoing status :)

comment:4   DD325 years ago

  • Keywords dev-feedback added

commit or wontfix?

comment:5   Denis-de-Bernardy4 years ago

  • Keywords has-patch tested commit added

maybe they're looking for extra keywords...

comment:6   ryan4 years ago

  • Milestone 2.0.12 deleted
  • Resolution set to duplicate
  • Status changed from new to closed

This is already done in trunk. Looks like this ticket was opened specifically for the 20.0 branch, was is effectively dead.

comment:7   Denis-de-Bernardy4 years ago

ok, so now we'll know what to do with 2.0 security fixes. 2.0 no longer is in the Debian package?

comment:8   ryan4 years ago

Debian moved on.

Note: See TracTickets for help on using tickets.