diff options
author | Frédéric Buclin <LpSolit@gmail.com> | 2010-08-05 00:10:22 +0200 |
---|---|---|
committer | Frédéric Buclin <LpSolit@gmail.com> | 2010-08-05 00:10:22 +0200 |
commit | 861fef876f3cb8a50437ee41b6ba4c8d0cb1e239 (patch) | |
tree | b76de5a3b2541e76ee018f6a7e8afd33ecf8f979 /Bugzilla/Constants.pm | |
parent | 2ea4b3d38e8a012f61d20e6831daaf06493c3d95 (diff) | |
download | bugs-861fef876f3cb8a50437ee41b6ba4c8d0cb1e239.tar bugs-861fef876f3cb8a50437ee41b6ba4c8d0cb1e239.tar.gz bugs-861fef876f3cb8a50437ee41b6ba4c8d0cb1e239.tar.bz2 bugs-861fef876f3cb8a50437ee41b6ba4c8d0cb1e239.tar.xz bugs-861fef876f3cb8a50437ee41b6ba4c8d0cb1e239.zip |
Bug 583690: (CVE-2010-2759) [SECURITY][PostgreSQL] Bugzilla crashes when viewing a bug if a comment contains 'bug <num>' or 'attachment <num>' where <num> is greater than the max allowed integer
r=mkanat a=LpSolit
Diffstat (limited to 'Bugzilla/Constants.pm')
-rw-r--r-- | Bugzilla/Constants.pm | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/Bugzilla/Constants.pm b/Bugzilla/Constants.pm index 2477d546f..72f4d4512 100644 --- a/Bugzilla/Constants.pm +++ b/Bugzilla/Constants.pm @@ -170,6 +170,7 @@ use Memoize; MIN_SMALLINT MAX_SMALLINT + MAX_INT_32 MAX_LEN_QUERY_NAME MAX_CLASSIFICATION_SIZE @@ -513,6 +514,7 @@ use constant ROOT_USER => ON_WINDOWS ? 'Administrator' : 'root'; use constant MIN_SMALLINT => -32768; use constant MAX_SMALLINT => 32767; +use constant MAX_INT_32 => 2147483647; # The longest that a saved search name can be. use constant MAX_LEN_QUERY_NAME => 64; |