Home > mailing lists

pgsql: Fix buffer overflow when processing SCRAM final message inlibpq - Mailing list pgsql-committers

From	Michael Paquier
Subject	pgsql: Fix buffer overflow when processing SCRAM final message inlibpq
Date	June 17, 2019 16:14:37
Msg-id	E1hcrT3-0005Ug-3V@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

Fix buffer overflow when processing SCRAM final message in libpq

When a client connects to a rogue server sending specifically-crafted
messages, this can suffice to execute arbitrary code as the operating
system account used by the client.

While on it, fix one error handling when decoding an incorrect salt
included in the first message received from server.

Author: Michael Paquier
Reviewed-by: Jonathan Katz, Heikki Linnakangas
Security: CVE-2019-10164
Backpatch-through: 10

Branch
------
REL_11_STABLE

Details
-------
https://git.postgresql.org/pg/commitdiff/27c464e42a9e3cb3779d1ea63b835a3e191682d6

Modified Files
--------------
src/interfaces/libpq/fe-auth-scram.c | 21 ++++++++++++++++++++-
1 file changed, 20 insertions(+), 1 deletion(-)

pgsql-committers by date:

From: Michael Paquier
Date: 17 June 2019, 15:49:23
Subject: pgsql: Fix buffer overflow when parsing SCRAM verifiers in backend

From: Peter Eisentraut
Date: 17 June 2019, 16:33:13
Subject: pgsql: Translation updates

pgsql: Fix buffer overflow when processing SCRAM final message inlibpq - Mailing list pgsql-committers

Previous

Next