Fix buffer overrun after incomplete read in pullf_read_max(). - postgresql.git - This is the main PostgreSQL git repository.

diff options

author	Noah Misch	2015-02-02 15:00:45 +0000
committer	Noah Misch	2015-02-02 15:00:49 +0000
commit	82806cf4e5442db51f1ca62631ea15b3343a9a76 (patch)
tree	8f782ea82536c73d81ceaa88eee1c946df2d7875 /doc/src
parent	2ac95c83ce9321cb428bf3508a606df31c762ef1 (diff)

Fix buffer overrun after incomplete read in pullf_read_max().

Most callers pass a stack buffer. The ensuing stack smash can crash the server, and we have not ruled out the viability of attacks that lead to privilege escalation. Back-patch to 9.0 (all supported versions). Marko Tiikkaja Security: CVE-2015-0243

Diffstat (limited to 'doc/src')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: