mirror/mariadb
1
0
Fork 0
mirror of https://github.com/MariaDB/server.git synced 2025-01-18 04:53:01 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
mariadb/sql
History
unknown c1585aea56 Bug #28984: crasher on connect with out of range password length in \ 
protocol

One could send a malformed packet that caused the server to SEGV.  In 
recent versions of the password protocol, the client tells the server 
what length the ciphertext is (almost always 20).  If that length was
large enough to overflow a signed char, then the number would jump to 
very large after being casted to unsigned int.

Instead, cast the *passwd char to uchar. 



sql/sql_parse.cc:
  Cast *passwd to get rid of the sign, so that sign extension doesn't
  cause the sequence 125, 126, 127, 4294967169, 4294967170.
2007-06-08 16:10:53 -04:00
..
examples another valgrind error fix for 4.1(backport from 5.0) 2007-02-02 17:18:42 +04:00
share Fix for the bug #24037 "Lossy Hebrew to Unicode conversion". 2006-12-22 15:30:37 +03:00
.cvsignore
add_errmsg
client_settings.h
custom_conf.h
derror.cc
des_key_file.cc Many files: 2005-09-30 14:03:55 +02:00
discover.cc
field.cc Fixed bug #13191. 2007-04-29 04:16:17 +05:00
field.h Fixed bug #13191. 2007-04-29 04:16:17 +05:00
field_conv.cc Valgrind error fixes 2007-02-01 18:00:24 +04:00
filesort.cc Fixed bug #24653. 2007-01-25 18:44:35 -08:00
frm_crypt.cc
gen_lex_hash.cc
gstream.cc
gstream.h
ha_berkeley.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_berkeley.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_blackhole.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_blackhole.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_heap.cc Bug#24985 - UTF8 ENUM primary key on MEMORY using BTREE 2007-03-27 10:49:48 +02:00
ha_heap.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_innodb.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_innodb.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_isam.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_isam.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_isammrg.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_isammrg.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
ha_myisam.cc Bug #27173: "Enabling keys got errno ..." does not say which table 2007-05-04 13:17:07 -04:00
ha_myisam.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
ha_myisammrg.cc WL#3567 - MERGE engine: a check for underlying table conformance 2007-01-31 16:15:20 +04:00
ha_myisammrg.h Bug#26464 - insert delayed + update + merge = corruption 2007-03-05 11:52:28 +01:00
ha_ndbcluster.cc Bug#25668 mysqld may core if cluster disconnected 2007-01-24 09:41:40 +07:00
ha_ndbcluster.h Bug #19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-10-23 23:46:35 +10:00
handler.cc another valgrind error fix for 4.1(backport from 5.0) 2007-02-02 17:18:42 +04:00
handler.h BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-08-10 22:55:20 +08:00
hash_filo.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
hash_filo.h forgotten s/__GNUC__/USE_PRAGMA_INTERFACE/ causes compilation faliures 2005-05-27 14:15:08 +02:00
hostname.cc Fix for bug #15756: incorrect ip address matching in ACL due to use of latin1 collation. 2006-01-24 13:58:28 +04:00
init.cc fix for bug #19690: ORDER BY eliminates rows from the result 2007-01-31 09:51:05 +04:00
item.cc Merge calliope.local.cmiller:/Volumes/Source/src/mysql-4.1-maint--bug25126 2007-02-14 12:24:11 -05:00
item.h Fixed bug #24653. 2007-01-25 18:44:35 -08:00
item_buff.cc group_by.result, group_by.test: 2005-06-21 04:24:21 -07:00
item_cmpfunc.cc Bug#27704: incorrect comparison of rows with NULL components 2007-04-20 15:14:09 +05:00
item_cmpfunc.h Bug#27704: incorrect comparison of rows with NULL components 2007-04-20 15:14:09 +05:00
item_create.cc Merging fix for bug #9796 "Query Cache caches queries with CURRENT_USER() 2005-04-11 10:44:48 +04:00
item_create.h
item_func.cc BUG#25951 - ignore/use index does not work with fulltext 2007-04-13 02:31:34 +05:00
item_func.h Fixed bug #24856: the result set of a ROLLUP query with DISTINCT could lack 2007-04-29 16:04:43 -07:00
item_geofunc.cc Fix for bug #26038: X() value of empty NOT NULL POINT is neither NULL nor NOT NULL 2007-02-21 14:45:19 +04:00
item_geofunc.h Fix for bug #26038: X() value of empty NOT NULL POINT is neither NULL nor NOT NULL 2007-02-21 14:45:19 +04:00
item_row.cc A fix and a test case for Bug#16248 "WHERE (col1,col2) IN ((?,?)) 2006-04-07 22:26:25 +04:00
item_row.h A fix and a test case for Bug#16248 "WHERE (col1,col2) IN ((?,?)) 2006-04-07 22:26:25 +04:00
item_strfunc.cc Bug#23409: Arguments of the ENCODE() and the DECODE() functions were not printed 2007-01-11 16:45:38 +03:00
item_strfunc.h Bug#23409: Arguments of the ENCODE() and the DECODE() functions were not printed 2007-01-11 16:45:38 +03:00
item_subselect.cc Fixed bug #24653. 2007-01-25 18:44:35 -08:00
item_subselect.h Fixed bug #24670: optimizations that are legal only for subqueries without tables 2006-12-11 18:57:23 -08:00
item_sum.cc Merge bk-internal.mysql.com:/home/bk/mysql-4.1 2006-11-29 02:39:17 +03:00
item_sum.h BUG#21354: (COUNT(*) = 1) not working in SELECT inside prepared 2006-10-10 17:08:47 +04:00
item_timefunc.cc Merge rkalimullin@bk-internal.mysql.com:/home/bk/mysql-4.1-maint 2007-02-06 14:58:07 +04:00
item_timefunc.h bug #16546 (DATETIME + 0 not always coerced in the same way) 2007-03-22 12:24:56 +04:00
item_uniq.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
item_uniq.h Add ifdefs to control when "#pragma implementation" should be used 2005-05-26 12:09:14 +02:00
key.cc Patch to eliminate compilation errors under VC after bug #13191 fix. 2007-04-29 11:56:23 +05:00
lex.h
lex_symbol.h
lock.cc BUG#21310 - Trees in SQL causing a "crashed" table with MyISAM storage engine 2006-12-20 19:05:35 +04:00
log.cc Bug#22645 LC_TIME_NAMES: Statement not replicated 2006-12-05 13:45:21 +04:00
log_event.cc BUG#21726: Incorrect result with multiple invocations of LAST_INSERT_ID. 2006-10-06 13:34:07 +04:00
log_event.h bug#19402 SQL close to the size of the max_allowed_packet fails on the slave 2006-11-12 20:01:58 +02:00
Makefile.am Bug#10777 ERROR File = sql_lex.cc, Line = 93 The identifier "symbols" is undefined. 2007-02-07 09:46:20 +01:00
matherr.c
mf_iocache.cc
my_lock.c
mysql_priv.h Merge rkalimullin@bk-internal.mysql.com:/home/bk/mysql-4.1-maint 2007-01-31 14:47:06 +04:00
mysqld.cc nptl: typo fixed. sigaddset restored 2007-03-24 14:03:27 +02:00
mysqld_suffix.h
net_serv.cc Bug#22943 syscall pruning in libmysql 2007-01-29 14:31:48 +01:00
nt_servc.cc
nt_servc.h
opt_range.cc BUG#26624: high mem usage (crash) in range optimizer 2007-03-31 00:29:18 +04:00
opt_range.h Fixed bug #24776: an assertion abort in handler::ha_index_init 2007-01-13 10:49:26 -08:00
opt_sum.cc Fixed bug #24987. 2007-01-30 13:06:36 -08:00
password.c A fix for Bug#13944 "libmysqlclient exporting sha1_result function": 2006-01-11 17:31:52 +03:00
procedure.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
procedure.h BUG#10241 cygwin port: invalid pragma interface directives 2005-05-04 15:05:56 +02:00
protocol.cc Bug #19216: Client crashes on long SELECT 2006-11-13 12:28:55 +02:00
protocol.h Bug #19216: Client crashes on long SELECT 2006-11-13 12:28:55 +02:00
protocol_cursor.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
records.cc Added more tests for new UPDATE ... ORDER BY ... LIMIT optimization 2005-10-25 02:27:40 +03:00
repl_failsafe.cc Bug#22943 syscall pruning in libmysql 2007-01-29 14:31:48 +01:00
repl_failsafe.h
set_var.cc Merge pilot.mysql.com:/home/msvensson/mysql/bug22943/my41-bug22943 2007-01-29 16:19:59 +01:00
set_var.h Bug#22645 LC_TIME_NAMES: Statement not replicated 2006-12-05 13:45:21 +04:00
slave.cc Merge rkalimullin@bk-internal.mysql.com:/home/bk/mysql-4.1-maint 2007-02-05 10:20:47 +04:00
slave.h Bug #2717: include/my_global.h mis-defines __attribute__ 2006-08-17 12:25:40 -07:00
spatial.cc Fix for bug #26038: X() value of empty NOT NULL POINT is neither NULL nor NOT NULL 2007-02-21 14:45:19 +04:00
spatial.h Fix for bug #26038: X() value of empty NOT NULL POINT is neither NULL nor NOT NULL 2007-02-21 14:45:19 +04:00
sql_acl.cc Merge bk-internal:/home/bk/mysql-4.1-maint 2006-09-28 18:11:29 -07:00
sql_acl.h Fix for bug #12423 "Deadlock when doing FLUSH PRIVILEGES and GRANT in 2005-09-01 16:52:59 +04:00
sql_analyse.cc Bug#20305: PROCEDURE ANALYSE() returns wrong M for FLOAT(M, D) and DOUBLE(M, D) 2006-09-28 14:30:20 -04:00
sql_analyse.h Add ifdefs to control when "#pragma implementation" should be used 2005-05-26 12:09:14 +02:00
sql_base.cc Bug#25126: Wrongly resolved field leads to a crash. 2007-03-04 00:47:42 +03:00
sql_bitmap.h terminal.c, sql_bitmap.h, my_sys.h, configure.in, config.h: 2005-05-05 09:15:14 +02:00
sql_cache.cc WL#2928 Date Translation NRE 2006-07-04 17:40:40 +05:00
sql_cache.h Merge sanja.is.com.ua:/home/bell/mysql/bk/work-4.0 2005-09-06 12:18:23 +03:00
sql_class.cc Bug #27231: Server crash when dumping into outfile with long FIELDS ENCLOSED BY option 2007-03-20 19:09:28 +01:00
sql_class.h Merge bk-internal.mysql.com:/home/bk/mysql-4.1-runtime 2007-01-15 13:03:21 +03:00
sql_client.cc
sql_crypt.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
sql_crypt.h Add ifdefs to control when "#pragma implementation" should be used 2005-05-26 12:09:14 +02:00
sql_db.cc Bug #15302 LOAD DATA FROM MASTER -> Packets out of order (Found: 2, expected 1) 2006-01-31 12:47:22 +01:00
sql_delete.cc Bug#17711: DELETE doesn't use index when ORDER BY, LIMIT and non-restricting 2007-01-11 16:05:03 +03:00
sql_derived.cc fixed union types merging and table related metadata (BUG#8824) 2005-03-23 08:36:48 +02:00
sql_do.cc
sql_error.cc abort storing query to query cache if warnings appeared (BUG#9414) 2005-06-28 00:52:21 +03:00
sql_handler.cc Re-run fix-fields on condition if table was reopened in HANDLERREAD 2006-01-10 19:13:12 +02:00
sql_help.cc
sql_insert.cc Merge bk-internal.mysql.com:/home/bk/mysql-4.1-runtime 2007-01-15 13:03:21 +03:00
sql_lex.cc A fix and test cases for 2006-12-08 02:20:09 +03:00
sql_lex.h A fix and test cases for 2006-12-08 02:20:09 +03:00
sql_list.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
sql_list.h BUG#26625: crash in range optimizer (out of mem) 2007-03-28 18:38:42 +04:00
sql_load.cc Fix for BUG#26050 "LOAD DATA INFILE breaks ACID"; the ok must be sent 2007-02-26 20:35:28 +01:00
sql_locale.cc Bug#22645 LC_TIME_NAMES: Statement not replicated 2006-12-05 13:45:21 +04:00
sql_manager.cc
sql_manager.h
sql_map.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
sql_map.h Add ifdefs to control when "#pragma implementation" should be used 2005-05-26 12:09:14 +02:00
sql_olap.cc a compiler must see '#pragma implementation' *before* 2005-06-05 19:38:52 +02:00
sql_parse.cc Bug #28984: crasher on connect with out of range password length in \ 2007-06-08 16:10:53 -04:00
sql_prepare.cc Merge siva.hindu.god:/home/tsmith/m/bk/41 2007-02-08 16:01:13 -07:00
sql_rename.cc
sql_repl.cc Bug#22943 syscall pruning in libmysql 2007-01-29 14:31:48 +01:00
sql_repl.h
sql_select.cc Fixed bug #24856: the result set of a ROLLUP query with DISTINCT could lack 2007-04-29 16:04:43 -07:00
sql_select.h gcc 4.1 linux warning fixes backported from 5.0. 2006-06-28 16:28:29 +03:00
sql_show.cc Merge siva.hindu.god:/home/tsmith/m/bk/mrg-jan17/41 2007-01-18 09:53:30 -07:00
sql_sort.h
sql_state.c
sql_string.cc Bug#21913: DATE_FORMAT() Crashes mysql server if I use it through mysql-connector-j driver. 2006-09-04 09:13:40 +02:00
sql_string.h Bug#19006: 4.0 valgrind problems (in test func_str) 2006-07-01 14:31:52 -04:00
sql_table.cc Merge bk-internal.mysql.com:/home/bk/mysql-4.1-runtime 2007-01-15 13:03:21 +03:00
sql_test.cc Bug#12920 - key_read_requests counter appears to re-set 2005-09-14 13:18:16 +02:00
sql_udf.cc - backport of a compile fix from 4.1 (ChangeSet@1.2260.23.2 2005/05/19 from reggie) 2005-06-30 17:33:23 +02:00
sql_udf.h Merge bk-internal.mysql.com:/home/bk/mysql-4.1 2005-05-09 12:16:59 +02:00
sql_union.cc BUG#19914 SELECT COUNT(*) sometimes returns MAX_INT on cluster tables 2006-09-28 23:41:37 +10:00
sql_update.cc Merge mysql.com:/home/svoj/devel/bk/mysql-4.1-engines 2006-12-20 19:08:28 +04:00
sql_yacc.yy Bug#25482 GRANT statements are not replicated if you use "replicate-ignore-table" 2007-03-29 14:12:32 +02:00
stacktrace.c Fix for bug #23256 "doesn't build on alpha" 2006-10-20 14:31:47 +04:00
stacktrace.h Bug #21250: esolve stack traces on AMD64 (backport to mysql-4.1) 2006-09-07 00:01:00 +02:00
strfunc.cc
structs.h Better comments in KEY_PART_INFO struct 2006-06-14 21:06:02 +04:00
table.cc Cset exclude: tsmith@siva.hindu.god|ChangeSet|20070328212513|13373 2007-04-02 10:39:23 +02:00
table.h A fix and a test case for Bug#19399 "res 'Lost Connection' when 2006-07-06 23:59:04 +04:00
thr_malloc.cc
time.cc Merge pchardin@bk-internal.mysql.com:/home/bk/mysql-4.1 2006-11-10 15:05:38 +03:00
tzfile.h
tztime.cc Add missing DBUG_RETURN() 2006-11-05 23:25:34 +03:00
tztime.h BUG#10241 cygwin port: invalid pragma interface directives 2005-05-04 15:05:56 +02:00
udf_example.cc
uniques.cc
unireg.cc Bug#24660: "enum" field type definition problem 2007-02-12 14:31:44 +01:00
unireg.h Fixed bug#14169: type of group_concat() result changed to blob if tmp_table was 2006-04-12 23:05:38 +04:00
watchdog_mysqld