From: Robert Haas <rhaas@postgresql.org>
Date: Fri, 4 Mar 2016 18:47:05 +0000 (-0500)
Subject: Fix SerializeSnapshot not to overrun the allocated space.
X-Git-Tag: REL9_6_BETA1~595
X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=17b124d30317eb194dc8b2fa86b1ebc5b09ac8f3;p=thirdparty%2Fpostgresql.git

Fix SerializeSnapshot not to overrun the allocated space.

Rushabh Lathia
---

diff --git a/src/backend/utils/time/snapmgr.c b/src/backend/utils/time/snapmgr.c
index 63e908d0a00..b88e0120041 100644
--- a/src/backend/utils/time/snapmgr.c
+++ b/src/backend/utils/time/snapmgr.c
@@ -1515,7 +1515,7 @@ SerializeSnapshot(Snapshot snapshot, char *start_address)
 	 * snapshot taken during recovery; all the top-level XIDs are in subxip as
 	 * well in that case, so we mustn't lose them.
 	 */
-	if (snapshot->subxcnt > 0)
+	if (serialized_snapshot->subxcnt > 0)
 	{
 		Size		subxipoff = sizeof(SerializedSnapshotData) +
 		snapshot->xcnt * sizeof(TransactionId);