[php-maint] Fwd: Bug#521198: php5-suhosin nulls mysql update parameters and allows update to continue
sean finney
seanius at debian.org
Tue Apr 7 18:35:25 UTC 2009
hi jan,
On Tue, Apr 07, 2009 at 07:48:38PM +0200, Jan Wagner wrote:
> Guessing from the bugreport, I think the cause for the "dataloss" was, that
> suhosin blocked the execution of the script, cause the values are to
> much/large, which can be adjusted via ini settings. Not checking, if the
> values have reasonable content, is not a problem of suhosin, but of the
> application. There are many other scenarios (unrelated to suhosin) which can
> cause empty values.
from what i read suhosin saw that the update was too large and it null'd
the fields, and then happily continued. i can sympathize with the reporter
that this is "less than ideal".
is there any option to make suhosin throw a fatal error instead of nulling
the values?
sean
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20090407/7eb25008/attachment.pgp>
More information about the pkg-php-maint
mailing list