October 13, 2009

Debian Security Advisory 1910 mysql-ocaml - missing escape function

Article Source Debian Security Advisories
October 13, 2009, 5:00 pm

It was discovered that mysql-ocaml, OCaml bindings for MySql, was missing a function to call mysql_real_escape_string(). This is needed, because mysql_real_escape_string() honours the charset of the connection and prevents insufficient escaping, when certain multibyte character encodings are used. The added function is called real_escape() and takes the established database connection as a first argument. The old escape_string() was kept for backwards compatibility...

Read More

Click Here!