Package: fusiondirectory / 1.3-4

0001_CVE-2019-11187_stricter-ldap-error-check.patch Patch series | download
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
From f2fd17d4ddead5d3b61ddebf5fd21e043bda30be Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?C=C3=B4me=20Chilliet?= <come@opensides.be>
Date: Mon, 29 Jul 2019 09:32:22 +0000
Subject: [PATCH] Merge branch 'stricter-ldap-error-check' into '1.4-dev'

:ambulance: fix(ldap) Use a stricter error check in ldap::success()

See merge request fusiondirectory/fd!648

(cherry picked from commit 29ca9876df28e45bb8f4f8960f3760c336936dfc)

23936352 :ambulance: fix(ldap) Use a stricter error check in ldap::success()
---
 core/include/class_ldap.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/core/include/class_ldap.inc
+++ b/core/include/class_ldap.inc
@@ -881,7 +881,7 @@
    */
   function success()
   {
-    return preg_match('/Success/i', $this->error);
+    return (trim($this->error) === 'Success');
   }
 
   /*!