dacort/rails_limit_bug.diff

## rails_limit_bug.diff
--- activerecord/lib/active_record/base.rb
+++ vuln/activerecord/lib/active_record/base.rb
@@ -358,1 +359,2 @@ module ActiveRecord
-        connection.add_limit!(sql, sanitize_sql(limit)) unless limit.nil?
+        limit = sanitize_sql(limit) if limit.is_a? Array and limit.first.is_a? String
+        connection.add_limit!(sql, limit) if limit


--- activerecord/lib/active_record/connection_adapters/mysql_adapter.rb
+++ vuln/activerecord/lib/active_record/connection_adapters/mysql_adapter.rb
@@ -175,1 +175,5 @@ module ActiveRecord
-
+
+      def add_limit_with_offset!(sql, limit, offset)
+        sql << " LIMIT #{offset}, #{limit}"
+      end
+
	--- activerecord/lib/active_record/base.rb
	+++ vuln/activerecord/lib/active_record/base.rb
	@@ -358,1 +359,2 @@ module ActiveRecord
	- connection.add_limit!(sql, sanitize_sql(limit)) unless limit.nil?
	+ limit = sanitize_sql(limit) if limit.is_a? Array and limit.first.is_a? String
	+ connection.add_limit!(sql, limit) if limit


	--- activerecord/lib/active_record/connection_adapters/mysql_adapter.rb
	+++ vuln/activerecord/lib/active_record/connection_adapters/mysql_adapter.rb
	@@ -175,1 +175,5 @@ module ActiveRecord
	-
	+
	+ def add_limit_with_offset!(sql, limit, offset)
	+ sql << " LIMIT #{offset}, #{limit}"
	+ end
	+