In oils_cstore.c:
1. Check the return code from all calls to SELECT().
2. In searchValueTransform(): insist that the function name be in a
JSON_STRING.
3. In searchFieldTransformPredicate(): screen the operator string for
SQL injection.
4. In searchFieldTransformPredicate(): insert another layer of
parentheses to avoid ambiguity.
5. Eliminated extraneous parameters on some calls to osrfLogError().
6. In searchFieldTransformPredicate(): disallow comparisons to
nulls and booleans.
git-svn-id: svn://svn.open-ils.org/ILS/trunk@12810
dcc99617-32d9-48b4-a31d-
7c20da2025e4
projects / working / Evergreen.git / commit