[Pkg-tcltk-devel] Bug#1053484: tclodbc: Off-by-one error in SQLDescribeParam() call
Christian Werner
Christian.Werner at t-online.de
Thu Oct 5 05:33:49 BST 2023
Package: tclodbc
Version: any
Severity: important
X-Debbugs-Cc: Christian.Werner at t-online.de
Dear Maintainer,
according to its description, the SQLDescribeParam() ODBC API counts
the parameter numbers starting with 1. However, in the statemnt.cxx
a loop over the parameters of a query is run starting with 0 as
parameter number. In consequence, data type mapping of the client
parameters to the query might become wrong heavily depending on the
actual query itself. Problem can be easily resolved by changing
SQLDescribeParam(..., i, ...);
to
SQLDescribeParam(..., i+1, ...);
BR,
Christian
-- System Information:
Debian Release: 11.7
APT prefers oldstable-updates
APT policy: (500, 'oldstable-updates'), (500, 'oldstable-security'), (500,
'oldstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 5.10.0-25-amd64 (SMP w/4 CPU threads)
Kernel taint flags: TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US:en
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages tclodbc depends on:
ii libc6 2.31-13+deb11u6
ii libgcc-s1 [libgcc1] 10.2.1-6
ii libgcc1 1:8.3.0-6
ii libodbc1 2.3.6-0.1+b1
ii libstdc++6 10.2.1-6
ii odbcinst1debian2 2.3.6-0.1+b1
ii tcl 8.6.11+1
tclodbc recommends no packages.
More information about the Pkg-tcltk-devel
mailing list