From 89be29505b1ed6146aef314d5524f46cc289cee3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?G=C3=A1bor=20Hojtsy?= <gabor@hojtsy.hu>
Date: Fri, 4 Jan 2008 09:31:49 +0000
Subject: #198856 by hswong3i: Fix some incorrect use of %s for table name
 escaping, implement better security checks

---
 includes/database.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'includes/database.inc')

diff --git a/includes/database.inc b/includes/database.inc
index 45a8b592c..25aadf57a 100644
--- a/includes/database.inc
+++ b/includes/database.inc
@@ -350,7 +350,7 @@ function db_rewrite_sql($query, $primary_table = 'n', $primary_field = 'nid',  $
 }
 
 /**
- * Restrict a dynamic tablename to safe characters.
+ * Restrict a dynamic table, column or constraint name to safe characters.
  *
  * Only keeps alphanumeric and underscores.
  */
-- 
cgit v1.2.3