Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-1910-1
HistoryOct 14, 2009 - 12:00 a.m.

mysql-ocaml - missing escape function

2009-10-1400:00:00
Google
osv.dev
9
JSON

It was discovered that mysql-ocaml, OCaml bindings for MySql, was
missing a function to call mysql_real_escape_string(). This is needed,
because mysql_real_escape_string() honours the charset of the connection
and prevents insufficient escaping, when certain multibyte character
encodings are used. The added function is called real_escape() and
takes the established database connection as a first argument. The old
escape_string() was kept for backwards compatibility.

Developers using these bindings are encouraged to adjust their code to
use the new function.

For the oldstable distribution (etch), this problem has been fixed in
version 1.0.4-2+etch1.

For the stable distribution (lenny), this problem has been fixed in
version 1.0.4-4+lenny1.

For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.

We recommend that you upgrade your mysql-ocaml packages.

CPENameOperatorVersion
mysql-ocamleq1.0.4-4
JSON