From 7ff1bbea19271ea7981b00c72937c14318794bf4 Mon Sep 17 00:00:00 2001
From: Andrew Nacin <wp@andrewnacin.com>
Date: Tue, 27 Aug 2013 15:20:10 +0000
Subject: [PATCH] Don't cast the 'm' query variable to an integer as the value
 can exceed the range of a 32-bit signed integer.

props Viper007Bond.
fixes #24884.

Built from https://develop.svn.wordpress.org/trunk@25138


git-svn-id: http://core.svn.wordpress.org/trunk@25118 1a063a9b-81f0-0310-95a4-ce76da25c4cd
---
 wp-includes/query.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/wp-includes/query.php b/wp-includes/query.php
index 505e428fb3..0a6eaee76b 100644
--- a/wp-includes/query.php
+++ b/wp-includes/query.php
@@ -1445,7 +1445,7 @@ class WP_Query {
 		$qv['monthnum'] = absint($qv['monthnum']);
 		$qv['day'] = absint($qv['day']);
 		$qv['w'] = absint($qv['w']);
-		$qv['m'] = absint($qv['m']);
+		$qv['m'] = preg_replace( '|[^0-9]|', '', $qv['m'] );
 		$qv['paged'] = absint($qv['paged']);
 		$qv['cat'] = preg_replace( '|[^0-9,-]|', '', $qv['cat'] ); // comma separated list of positive or negative integers
 		$qv['pagename'] = trim( $qv['pagename'] );
@@ -2047,7 +2047,6 @@ class WP_Query {
 
 		// If a month is specified in the querystring, load that month
 		if ( $q['m'] ) {
-			$q['m'] = '' . preg_replace('|[^0-9]|', '', $q['m']);
 			$where .= " AND YEAR($wpdb->posts.post_date)=" . substr($q['m'], 0, 4);
 			if ( strlen($q['m']) > 5 )
 				$where .= " AND MONTH($wpdb->posts.post_date)=" . substr($q['m'], 4, 2);