]> git.ipfire.org Git - thirdparty/postgresql.git/commit
projects / thirdparty / postgresql.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c6c6aa2) | patch
Fix buffer overrun after incomplete read in pullf_read_max().
authorNoah Misch <noah@leadboat.com>
Mon, 2 Feb 2015 15:00:45 +0000 (10:00 -0500)
committerNoah Misch <noah@leadboat.com>
Mon, 2 Feb 2015 15:00:51 +0000 (10:00 -0500)
commitd95ebe0ac39b946c207ed0c37bba0365132ba3c6
tree065581767729a6b205ce51e0e5aee824915c2fd9tree
parentc6c6aa288c7d2835f587e89847c7355d43e548e3commit | diff
Fix buffer overrun after incomplete read in pullf_read_max().

Most callers pass a stack buffer.  The ensuing stack smash can crash the
server, and we have not ruled out the viability of attacks that lead to
privilege escalation.  Back-patch to 9.0 (all supported versions).

Marko Tiikkaja

Security: CVE-2015-0243
contrib/pgcrypto/expected/pgp-info.out diff | blob | blame | history
contrib/pgcrypto/expected/pgp-pubkey-decrypt.out diff | blob | blame | history
contrib/pgcrypto/mbuf.c diff | blob | blame | history
contrib/pgcrypto/sql/pgp-pubkey-decrypt.sql diff | blob | blame | history
Mirror of https://git.postgresql.org/git/postgresql.git