Fix for a security flaw in database hash

d96d2e56 · unknown · a3edc742 · d96d2e56 · d96d2e56
Commit d96d2e56 authored Aug 07, 2002 by unknown
Hide whitespace changes
Inline Side-by-side

Showing with 4 additions and 0 deletions

Docs/manual.texi Docs/manual.texi +2 -0

sql/sql_acl.cc sql/sql_acl.cc +2 -0

No files found.
--- a/Docs/manual.texi
+++ b/Docs/manual.texi
@@ -46928,6 +46928,8 @@ not yet 100% confident in this code.
 @appendixsubsec Changes in release 3.23.52
 @itemize @bullet
 @item
+Fixed  a security bug with empty db column in db table
+@item
 Changed initialisation of @code{RND()} to make it less predicatable.
 @item
 Fixed problem with @code{GROUP BY} on result with expression that created a
--- a/sql/sql_acl.cc
+++ b/sql/sql_acl.cc
@@ -242,6 +242,8 @@ int  acl_init(bool dont_read_acl_tables)
    ACL_DB db;
    update_hostname(&db.host,get_field(&mem, table,0));
    db.db=get_field(&mem, table,1);
+    if (!db.db || !db.db[0])
+      continue;
    db.user=get_field(&mem, table,2);
    db.access=get_access(table,3);
    db.access=fix_rights_for_db(db.access);