aherman
/
proxysql
mirror of https://github.com/sysown/proxysql
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Prevent a buffer overflow in SELECT @@version

Browse Source
pull/1838/head
René Cannaò 8 years ago
parent 5d3b571e4c
commit 96f179f943
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File

4
lib/ProxySQL_Admin.cpp
Unescape View File

@ -2657,7 +2657,7 @@ void admin_session_handler(MySQL_Session *sess, void *_pa, PtrSize_t *pkt) {
if (!strncasecmp("SELECT @@version", query_no_space, strlen("SELECT @@version"))) {
l_free(query_length,query);
char *q=(char *)"SELECT '%s' AS '@@version'";
query_length=strlen(q)+20;
query_length=strlen(q)+20+strlen(PROXYSQL_VERSION);
query=(char *)l_alloc(query_length);
sprintf(query,q,PROXYSQL_VERSION);
goto __run_query;
@ -2666,7 +2666,7 @@ void admin_session_handler(MySQL_Session *sess, void *_pa, PtrSize_t *pkt) {
if (!strncasecmp("SELECT version()", query_no_space, strlen("SELECT version()"))) {
l_free(query_length,query);
char *q=(char *)"SELECT '%s' AS 'version()'";
query_length=strlen(q)+20;
query_length=strlen(q)+20+strlen(PROXYSQL_VERSION);
query=(char *)l_alloc(query_length);
sprintf(query,q,PROXYSQL_VERSION);
goto __run_query;

Write Preview
Loading…
Cancel
Save