From d297ac7464fd8a307910052d7e391ae6588f9451 Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Tue, 1 Jun 2010 09:24:09 +0000
Subject: - Patch #811776 by Heine: regresssion of SA-2006-005 - SQL Injection
 via db_query_range().

---
 includes/database/mysql/database.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'includes/database/mysql')

diff --git a/includes/database/mysql/database.inc b/includes/database/mysql/database.inc
index 77779f992..4e03539e5 100644
--- a/includes/database/mysql/database.inc
+++ b/includes/database/mysql/database.inc
@@ -59,7 +59,7 @@ class DatabaseConnection_mysql extends DatabaseConnection {
   }
 
   public function queryRange($query, $from, $count, array $args = array(), array $options = array()) {
-    return $this->query($query . ' LIMIT ' . $from . ', ' . $count, $args, $options);
+    return $this->query($query . ' LIMIT ' . (int) $from . ', ' . (int) $count, $args, $options);
   }
 
   public function queryTemporary($query, array $args = array(), array $options = array()) {
-- 
cgit v1.2.3