From 8faabd6d2264898dbe0a6675c1880385c38610cb Mon Sep 17 00:00:00 2001
From: Jamie Cameron <jcameron@webmin.com>
Date: Sat, 5 Oct 2019 22:40:29 -0700
Subject: [PATCH] Properly escape where clause

---
 mysql/mysql-lib.pl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mysql/mysql-lib.pl b/mysql/mysql-lib.pl
index 11a28be7d..b504c5ed1 100755
--- a/mysql/mysql-lib.pl
+++ b/mysql/mysql-lib.pl
@@ -1445,7 +1445,7 @@ local $dropsql = $drop ? "--add-drop-table" : "";
 local $singlesql = $single ? "--single-transaction" : "";
 local $forcesql = $force ? "--force" : "";
 local $quicksql = $quick ? "--quick" : "";
-local $wheresql = $where ? "\"--where=$in{'where'}\"" : "";
+local $wheresql = $where ? "--where=".quotemeta($in{'where'}) : "";
 local $charsetsql = $charset ?
 	"--default-character-set=".quotemeta($charset) : "";
 local $compatiblesql = @$compatible ?