[exim-dev] [Bug 2850] query-style lookup parameter safety e…

Top Page
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 2850] query-style lookup parameter safety enforcement
https://bugs.exim.org/show_bug.cgi?id=2850

Git Commit <git@???> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |git@???


--- Comment #1 from Git Commit <git@???> ---
Git commit:
https://git.exim.org/exim.git/commitdiff/4191cb150300d310ab5fa22ce2cfb02b6f6051b0

commit 4191cb150300d310ab5fa22ce2cfb02b6f6051b0
Author:     Jeremy Harris <jgh146exb@???>
AuthorDate: Thu Mar 3 22:23:42 2022 +0000
Commit:     Jeremy Harris <jgh146exb@???>
CommitDate: Thu Mar 3 22:23:42 2022 +0000


    check query strings of query-style lookups for quoting.  bug 2850
----
 doc/doc-docbook/spec.xfpt              |  23 +-
 doc/doc-txt/NewStuff                   |   3 +
 src/OS/unsupported/os.c-IRIX           |   2 +-
 src/OS/unsupported/os.c-IRIX6          |   2 +-
 src/OS/unsupported/os.c-IRIX632        |   2 +-
 src/OS/unsupported/os.c-IRIX65         |   2 +-
 src/exim_monitor/em_main.c             |   2 +-
 src/exim_monitor/em_queue.c            |   4 +-
 src/src/acl.c                          |  58 ++-
 src/src/arc.c                          |  16 +-
 src/src/auths/pwcheck.c                |   2 +-
 src/src/auths/xtextdecode.c            |   2 +-
 src/src/auths/xtextencode.c            |   2 +-
 src/src/base64.c                       |  15 +-
 src/src/bmi_spam.c                     |  10 +-
 src/src/child.c                        |   2 +-
 src/src/daemon.c                       |  12 +-
 src/src/dbfn.c                         |   8 +-
 src/src/deliver.c                      |  44 ++-
 src/src/dkim.c                         |   2 +-
 src/src/dmarc.c                        |   2 +-
 src/src/dns.c                          |  10 +-
 src/src/dnsbl.c                        |   6 +-
 src/src/drtables.c                     |   2 +-
 src/src/exim.c                         | 142 +++++---
 src/src/exim_dbmbuild.c                |   2 +-
 src/src/exim_dbutil.c                  |  10 +-
 src/src/expand.c                       | 238 ++++++------
 src/src/filter.c                       |  33 +-
 src/src/filtertest.c                   |   4 +-
 src/src/functions.h                    |  67 ++--
 src/src/globals.c                      |   3 +
 src/src/globals.h                      |   3 +
 src/src/hash.c                         |  10 +-
 src/src/header.c                       |   4 +-
 src/src/host.c                         |  33 +-
 src/src/local_scan.h                   |  18 +-
 src/src/log.c                          |  22 +-
 src/src/lookupapi.h                    |  11 +-
 src/src/lookups/cdb.c                  |  10 +-
 src/src/lookups/dbmdb.c                |   2 +-
 src/src/lookups/ibase.c                |  89 ++---
 src/src/lookups/json.c                 |   2 +-
 src/src/lookups/ldap.c                 |  27 +-
 src/src/lookups/lmdb.c                 |   2 +-
 src/src/lookups/mysql.c                |  19 +-
 src/src/lookups/nisplus.c              |  15 +-
 src/src/lookups/oracle.c               |  30 +-
 src/src/lookups/pgsql.c                |   8 +-
 src/src/lookups/readsock.c             |   2 +-
 src/src/lookups/redis.c                |  18 +-
 src/src/lookups/sqlite.c               |  19 +-
 src/src/malware.c                      |   8 +-
 src/src/match.c                        |  14 +-
 src/src/mime.c                         |   2 +-
 src/src/moan.c                         |   2 +-
 src/src/os.c                           |   8 +-
 src/src/parse.c                        |  27 +-
 src/src/pdkim/pdkim.c                  |  24 +-
 src/src/pdkim/signing.c                |   6 +-
 src/src/queue.c                        |   8 +-
 src/src/rda.c                          |  10 +-
 src/src/readconf.c                     |  32 +-
 src/src/receive.c                      |  27 +-
 src/src/regex.c                        |   6 +-
 src/src/retry.c                        |   6 +-
 src/src/rewrite.c                      |   4 +-
 src/src/rfc2047.c                      |   4 +-
 src/src/route.c                        |  27 +-
 src/src/routers/dnslookup.c            |   2 +-
 src/src/routers/ipliteral.c            |   2 +-
 src/src/routers/iplookup.c             |   4 +-
 src/src/routers/manualroute.c          |   2 +-
 src/src/routers/redirect.c             |   2 +-
 src/src/routers/rf_change_domain.c     |   6 +-
 src/src/routers/rf_get_munge_headers.c |   4 +-
 src/src/search.c                       |  53 ++-
 src/src/sieve.c                        |  30 +-
 src/src/smtp_in.c                      |  15 +-
 src/src/spam.c                         |   2 +-
 src/src/spool_in.c                     |  97 +++--
 src/src/spool_out.c                    |  10 +-
 src/src/store.c                        | 643 ++++++++++++++++++++++++---------
 src/src/store.h                        |  33 +-
 src/src/string.c                       |  49 +--
 src/src/structs.h                      |  12 +
 src/src/tls-gnu.c                      |  14 +-
 src/src/tls-openssl.c                  |  18 +-
 src/src/tls.c                          |   2 +-
 src/src/tlscert-gnu.c                  |  18 +-
 src/src/tlscert-openssl.c              |   6 +-
 src/src/transport.c                    |  46 ++-
 src/src/transports/appendfile.c        |   2 +-
 src/src/transports/autoreply.c         |   2 +-
 src/src/transports/pipe.c              |   2 +-
 src/src/transports/smtp.c              |  11 +-
 src/src/tree.c                         |   8 +-
 src/src/utf8.c                         |   4 +-
 src/src/verify.c                       |  29 +-
 test/confs/2610                        |  35 +-
 test/confs/2620                        |  21 +-
 test/log/2610                          |   2 +
 test/paniclog/2610                     |   1 +
 test/runtest                           |   2 +-
 test/scripts/2610-MySQL/2610           |   2 +
 test/stderr/2200                       |   2 +
 test/stderr/2201                       |   4 +
 test/stderr/2202                       |   1 +
 test/stderr/2610                       |  85 ++++-
 test/stderr/2620                       | 103 ++++--
 110 files changed, 1701 insertions(+), 976 deletions(-)


--
You are receiving this mail because:
You are on the CC list for the bug.