From d18833467afdeaea11fe0deae3495e36dca209e0 Mon Sep 17 00:00:00 2001
From: "lpsolit%gmail.com" <>
Date: Thu, 10 Nov 2005 07:40:50 +0000
Subject: [PATCH] =?utf8?q?Bug=20314919:=20[PostgreSQL]=20"Find=20a=20Speci?=
 =?utf8?q?fic=20Bug"=20using=20Pg=20fails=20-=20Patch=20by=20Fr=C3=A9d?=
 =?utf8?q?=C3=A9ric=20Buclin=20<LpSolit@gmail.com>=20r=3Djoel=20a=3Dmyk?=
MIME-Version: 1.0
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit

---
 Bugzilla/DB.pm | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Bugzilla/DB.pm b/Bugzilla/DB.pm
index 263f545af4..f031637d55 100644
--- a/Bugzilla/DB.pm
+++ b/Bugzilla/DB.pm
@@ -272,6 +272,9 @@ sub sql_fulltext_search {
     # in LIKE search clauses
     @words = map($self->quote("%$_%"), @words);
 
+    # untaint words, since they are safe to use now that we've quoted them
+    map(trick_taint($_), @words);
+
     # turn the words into a set of LIKE search clauses
     @words = map("LOWER($column) LIKE $_", @words);
 
-- 
2.47.2