* Changed /modules/getid3/extension.cache.mysql.php to use
mysql_real_escape_string() instead of mysql_escape_string() which is now
depreciated. This is needed to correct a potential sql_injection
vulnerability. (LP: #454892)
-- Charlie Smotherman <email address hidden> Sun, 18 Oct 2009 08:50:25 -0500
This bug was fixed in the package ampache - 3.5.1-1ubuntu2
---------------
ampache (3.5.1-1ubuntu2) karmic; urgency=low
* Changed /modules/ getid3/ extension. cache.mysql. php to use real_escape_ string( ) instead of mysql_escape_ string( ) which is now
mysql_
depreciated. This is needed to correct a potential sql_injection
vulnerability. (LP: #454892)
-- Charlie Smotherman <email address hidden> Sun, 18 Oct 2009 08:50:25 -0500