Home > mailing lists

Re: [SECURITY] DoS attack on backend possible - Mailing list pgsql-hackers

From	Tom Lane
Subject	Re: [SECURITY] DoS attack on backend possible
Date	August 19, 2002 17:33:49
Msg-id	20808.1029782022@sss.pgh.pa.us Whole thread Raw
In response to	Re: [SECURITY] DoS attack on backend possible (Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>)
Responses	Re: [SECURITY] DoS attack on backend possible
List	pgsql-hackers

Tree view

Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE> writes:
> That's the idea.  It's the job of the database to guarantee data
> integrety.

> Obviously, the PostgreSQL developers disagree.

Look: it's an acknowledged bug and it's fixed in current sources.
The disagreement is over whether this single bug is sufficient reason
to force issuance of a 7.2.2 release.  Given that we are within a couple
of weeks of going beta for 7.3, the previous decision not to issue a
7.2.2 release will stand, unless something *much* worse than this pops
up.

Saying or implying that the developers don't care about data integrity
does not enhance your credibility.
        regards, tom lane

pgsql-hackers by date:

From: Tom Lane
Date: 19 August 2002, 17:24:34
Subject: Re: @(#) Mordred Labs advisory 0x0001: Buffer overflow in

From: Florian Weimer
Date: 19 August 2002, 17:38:26
Subject: Re: [SECURITY] DoS attack on backend possible

Re: [SECURITY] DoS attack on backend possible - Mailing list pgsql-hackers

Previous

Next