Home > mailing lists

Re: [PATCH] avoid buffer underflow in errfinish() - Mailing list pgsql-hackers

From	Bruce Momjian
Subject	Re: [PATCH] avoid buffer underflow in errfinish()
Date	November 30, 2013 22:00:54
Msg-id	20131130190046.GB11181@momjian.us Whole thread Raw
In response to	Re: [PATCH] avoid buffer underflow in errfinish() (Robert Haas <robertmhaas@gmail.com>)
Responses	Re: [PATCH] avoid buffer underflow in errfinish() (Robert Haas <robertmhaas@gmail.com>)
List	pgsql-hackers

Tree view

On Wed, Mar 27, 2013 at 08:45:51AM -0400, Robert Haas wrote:
> On Sat, Mar 23, 2013 at 6:38 PM, Xi Wang <xi.wang@gmail.com> wrote:
> > CHECK_STACK_DEPTH checks if errordata_stack_depth is negative.
> > Move the dereference of &errordata[errordata_stack_depth] after
> > the check to avoid out-of-bounds read.
> 
> This seems sensible and I'm inclined to commit it.  It's unlikely to
> matter very much in practice, since the only point of checking the
> stack depth in the first place is to catch a seemingly-unlikely coding
> error; and it's unlikely that referencing beyond the stack bounds
> would do anything too horrible, either.  But we may as well do it
> right.

Was this ever dealt with?

--  Bruce Momjian  <bruce@momjian.us>        http://momjian.us EnterpriseDB
http://enterprisedb.com
 + Everyone has their own god. +

pgsql-hackers by date:

From: Kevin Grittner
Date: 30 November 2013, 21:12:24
Subject: Re: select_common_type()'s behavior doesn't match the documentation

From: Jeffrey Walton
Date: 30 November 2013, 22:58:38
Subject: Re: fe-secure.c and SSL/TLS

Re: [PATCH] avoid buffer underflow in errfinish() - Mailing list pgsql-hackers

Previous

Next