Comment 11 for bug 1990302

Our servers were updated and this bug is fully mitigated. Thank you so much for working on this!!! Although not a CVE, this bug affects such a commonly used functionality that it needed a backport.

BTW, I would argue this bug should have received a CVE. It's easy to imagine than string(16) "1111111111111111" is some kind of secret.

Thanks again.