Home > mailing lists

pgsql: to_char(): prevent accesses beyond the allocated buffer - Mailing list pgsql-committers

From	Bruce Momjian
Subject	pgsql: to_char(): prevent accesses beyond the allocated buffer
Date	February 7, 2015 05:18:03
Msg-id	E1YIIVa-0008OL-Jm@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

to_char():  prevent accesses beyond the allocated buffer

Previously very long field masks for floats could access memory
beyond the existing buffer allocated to hold the result.

Reported by Andres Freund and Peter Geoghegan.    Backpatch to all
supported versions.

Security: CVE-2015-0241

Branch
------
master

Details
-------
http://git.postgresql.org/pg/commitdiff/0150ab567bcf5e5913e2b62a1678f84cc272441f

Modified Files
--------------
src/backend/utils/adt/formatting.c |    4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)

pgsql-committers by date:

From: Noah Misch
Date: 07 February 2015, 05:17:54
Subject: pgsql: Fix buffer overrun after incomplete read in pullf_read_max().

From: Noah Misch
Date: 07 February 2015, 05:18:15
Subject: pgsql: Cherry-pick security-relevant fixes from upstream imath library.

pgsql: to_char(): prevent accesses beyond the allocated buffer - Mailing list pgsql-committers

Previous

Next