Uploaded image for project: 'MariaDB Server'
  1. MariaDB Server
  2. MDEV-33727

mariadb-dump trusts the server and does not validate the data

    XMLWordPrintable

Details

    Description

      mariadb-dump trusts the server and puts the data it receives into the dump without validation or escaping. Malicious server can inject thus \​! command into the dump.

      Attachments

        Issue Links

          Activity

            People

              serg Sergei Golubchik
              serg Sergei Golubchik
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Git Integration

                  Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.