From d18833467afdeaea11fe0deae3495e36dca209e0 Mon Sep 17 00:00:00 2001 From: "lpsolit%gmail.com" <> Date: Thu, 10 Nov 2005 07:40:50 +0000 Subject: Bug 314919: [PostgreSQL] "Find a Specific Bug" using Pg fails - Patch by Frédéric Buclin r=joel a=myk MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- Bugzilla/DB.pm | 3 +++ 1 file changed, 3 insertions(+) diff --git a/Bugzilla/DB.pm b/Bugzilla/DB.pm index 263f545af..f031637d5 100644 --- a/Bugzilla/DB.pm +++ b/Bugzilla/DB.pm @@ -272,6 +272,9 @@ sub sql_fulltext_search { # in LIKE search clauses @words = map($self->quote("%$_%"), @words); + # untaint words, since they are safe to use now that we've quoted them + map(trick_taint($_), @words); + # turn the words into a set of LIKE search clauses @words = map("LOWER($column) LIKE $_", @words); -- cgit v1.2.3-24-g4f1b