SQLite

View Ticket
Login
2017-04-13
00:12
Fix a regression caused by the fix for ticket [6c9b5514077fed34551f98e64c09a1] - control characters allowed in JSON. (check-in: 8e7b6118 user: drh tags: trunk)
2017-04-10
12:25 Fixed ticket [6c9b5514]: JSON allows unescaped control characters in strings plus 5 other changes (artifact: a2343249 user: drh)
12:25
Change the JSON extension so that it disallows control characters inside of strings. Fix for ticket [6c9b5514077fed34551f98e64c09a10dc2fc8e16]. (check-in: 475d8f82 user: drh tags: trunk)
12:14 New ticket [6c9b5514] JSON allows unescaped control characters in strings. (artifact: e6bb692a user: drh)

Ticket Hash: 6c9b5514077fed34551f98e64c09a10dc2fc8e16
Title: JSON allows unescaped control characters in strings
Status: Fixed Type: Code_Defect
Severity: Important Priority: Immediate
Subsystem: Unknown Resolution: Fixed
Last Modified: 2017-04-10 12:25:16
Version Found In: 3.18.0
User Comments:
drh added on 2017-04-10 12:14:46:

The JSON spec requires that control characters are always escaped. However, the SQLite JSON1 extension allows unescaped control characters in input strings to the "json_valid()" function.