The following bug has been SUBMITTED. ====================================================================== http://www.dbmail.org/mantis/bug_view_advanced_page.php?bug_id=0000228 ====================================================================== Reported By: kaname Assigned To: ====================================================================== Project: DBMail Bug ID: 228 Category: Database layer Reproducibility: always Severity: crash Priority: normal Status: new ====================================================================== Date Submitted: 13-Jul-05 03:21 CEST Last Modified: 13-Jul-05 03:21 CEST ====================================================================== Summary: It single quotation is not escaped in the access to DB. Description: The first problem.
It real name part in mail address (To, Cc, and From, etc.) doesn't escape. Therefore, when a real name that contains a single quotation is specified, segmentation fault is caused. The second problem. When the mailbox is made, earliness DB is accessed from the check on the mailbox name. Therefore, the error occurs by db_findmailbox if the mailbox name including a single quotation is specified. ====================================================================== Bug History Date Modified Username Field Change ====================================================================== 13-Jul-05 03:21kaname New Bug 13-Jul-05 03:21kaname File Added: dbmail-escape.patch ======================================================================