Bug #32143 mysql_change_user() could be more robust
Submitted: 6 Nov 2007 11:53 Modified: 6 Nov 2007 12:02
Reporter: Sergei Golubchik Email Updates:
Status: Duplicate Impact on me:
None 
Category:MySQL Server: C API (client library) Severity:S2 (Serious)
Version:5.1 OS:Any
Assigned to: CPU Architecture:Any

[6 Nov 2007 11:53] Sergei Golubchik 
Description:
mysql_change_user() uses strmov() into a fixed-size local buffer.
It could overflow the buffer if the application doesn't validate its input.

How to repeat:
see libmysql/libmysql.c

Suggested fix:
use strnmov() instead
[6 Nov 2007 12:02] Sergei Golubchik 
Duplicate fo bug#31669