Make WordPress Core

Changes between Initial Version and Version 2 of Ticket #52738


Ignore:
Timestamp:
09/29/2022 03:01:31 PM (18 months ago)
Author:
SergeyBiryukov
Comment:

Hi there, welcome back to WordPress Trac!

Thanks for the ticket, sorry it took so long for someone to get back to you.

Moving to 6.2 along with #47164 to get more eyes on both tickets and hopefully resolve them.

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #52738

    • Property Keywords needs-patch needs-unit-tests added
    • Property Milestone changed from Awaiting Review to 6.2
    • Property Component changed from General to Posts, Post Types
    • Property Summary changed from Use of get_object_vars does not handle null byte to Use of get_object_vars() in sanitize_post() and WP_Post constructor does not handle null byte
  • Ticket #52738 – Description

    initial v2  
    11In places where get_object_vars is used to loop over an objects properties and then trying to access them null bytes are not handled.
    22
    3 There is an old bug-report (from me) for map_deep https://core.trac.wordpress.org/ticket/47164 but now we are experience this in other places too; in sanitize_post and in the constructor of class-wp-post.
     3There is an old bug-report (from me) for map_deep #47164 but now we are experience this in other places too; in sanitize_post and in the constructor of class-wp-post.
    44
    55This is totally destroying our business and I don't know what to do. Since I reported the issue for map_deep I have had to manually patch formatting.php every time there is a WordPress update. But now, trying to handle all the places get_object_vars is used in hopeless.