to_char(): prevent accesses beyond the allocated buffer
Previously very long field masks for floats could access memory
beyond the existing buffer allocated to hold the result.
Reported by Andres Freund and Peter Geoghegan. Backpatch to all
supported versions.
Security: CVE-2015-0241
Branch
------
master
Details
-------
http://git.postgresql.org/pg/commitdiff/0150ab567bcf5e5913e2b62a1678f84cc272441f
Modified Files
--------------
src/backend/utils/adt/formatting.c | 4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)