Fix buffer overrun after incomplete read in pullf_read_max(). - user/sven/postgresql.git

diff options

author	Noah Misch <noah@leadboat.com>	2015-02-02 10:00:45 -0500
committer	Noah Misch <noah@leadboat.com>	2015-02-02 10:00:51 -0500
commit	d95ebe0ac39b946c207ed0c37bba0365132ba3c6 (patch)
tree	065581767729a6b205ce51e0e5aee824915c2fd9 /src/backend/tcop/postgres.c
parent	c6c6aa288c7d2835f587e89847c7355d43e548e3 (diff)

Fix buffer overrun after incomplete read in pullf_read_max().

Most callers pass a stack buffer. The ensuing stack smash can crash the server, and we have not ruled out the viability of attacks that lead to privilege escalation. Back-patch to 9.0 (all supported versions). Marko Tiikkaja Security: CVE-2015-0243

Diffstat (limited to 'src/backend/tcop/postgres.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: