Bug #13934049: 64884: LOGINS WITH INCORRECT PASSWORD ARE ALLOWED

Fixed an improper type conversion on return that can make the server accept logins with a wrong password.

Bug #13934049: 64884: LOGINS WITH INCORRECT PASSWORD ARE ALLOWED
Fixed an improper type conversion on return that can make the server accept logins with a wrong password.
5ac773b9 · Georgi Kodinov · 17817a30 · 5ac773b9
Commit 5ac773b9 authored Apr 06, 2012 by Georgi Kodinov
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

sql/password.c sql/password.c +1 -1

No files found.
--- a/sql/password.c
+++ b/sql/password.c
@@ -531,7 +531,7 @@ check_scramble(const char *scramble_arg, const char *message,
  mysql_sha1_reset(&sha1_context);
  mysql_sha1_input(&sha1_context, buf, SHA1_HASH_SIZE);
  mysql_sha1_result(&sha1_context, hash_stage2_reassured);
-  return memcmp(hash_stage2, hash_stage2_reassured, SHA1_HASH_SIZE);
+  return test(memcmp(hash_stage2, hash_stage2_reassured, SHA1_HASH_SIZE));
 }