• Harin Vadodaria's avatar
    Bug#15912213: BUFFER OVERFLOW IN ACL_GET() · bc6287a3
    Harin Vadodaria authored
    Description: A very large database name causes buffer
                 overflow in functions acl_get() and
                 check_grant_db() in sql_acl.cc. It happens
                 due to an unguarded string copy operation.
                 This puts required sanity checks before
                 copying db string to destination buffer.
    bc6287a3
sql_acl.cc 201 KB