$OpenBSD: patch-library_Zend_Db_Adapter_Pdo_Abstract_php,v 1.1 2015/10/26 08:32:52 jasper Exp $

Security fix for CVE-2015-7695
https://github.com/zendframework/zf1/commit/2ac9c30f73ec2e6235c602bed745749a551b4fe2

--- library/Zend/Db/Adapter/Pdo/Abstract.php.orig	Tue Sep 16 22:47:34 2014
+++ library/Zend/Db/Adapter/Pdo/Abstract.php	Fri Oct 23 16:38:00 2015
@@ -292,6 +292,8 @@ abstract class Zend_Db_Adapter_Pdo_Abstract extends Ze
         if (is_int($value) || is_float($value)) {
             return $value;
         }
+        // Fix for null-byte injection
+        $value = addcslashes($value, "\000\032");
         $this->_connect();
         return $this->_connection->quote($value);
     }
@@ -398,4 +400,3 @@ abstract class Zend_Db_Adapter_Pdo_Abstract extends Ze
         }
     }
 }
-
