Home > mailing lists

pgsql: to_char(): prevent accesses beyond the allocated buffer - Mailing list pgsql-committers

From	Bruce Momjian
Subject	pgsql: to_char(): prevent accesses beyond the allocated buffer
Date	February 7, 2015 05:14:41
Msg-id	E1YIIVa-0008Od-LR@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

to_char():  prevent accesses beyond the allocated buffer

Previously very long field masks for floats could access memory
beyond the existing buffer allocated to hold the result.

Reported by Andres Freund and Peter Geoghegan.    Backpatch to all
supported versions.

Security: CVE-2015-0241

Branch
------
REL9_4_STABLE

Details
-------
http://git.postgresql.org/pg/commitdiff/1628a0bbfa2e30cd52daaa3ae78961d301adad2f

Modified Files
--------------
src/backend/utils/adt/formatting.c |    4 +++-
1 file changed, 3 insertions(+), 1 deletion(-)

pgsql-committers by date:

From: Bruce Momjian
Date: 07 February 2015, 05:14:39
Subject: pgsql: to_char(): prevent writing beyond the allocated buffer

From: Bruce Momjian
Date: 07 February 2015, 05:14:48
Subject: pgsql: port/snprintf(): fix overflow and do padding

pgsql: to_char(): prevent accesses beyond the allocated buffer - Mailing list pgsql-committers

Previous

Next