mirror of
https://github.com/postgres/postgres.git
synced 2026-05-21 01:37:50 -04:00
Doc: fix release-note typo.
This mention of memcpy() should of course have said memcmp(). Reported-by: chris@chrullrich.net Author: Tom Lane <tgl@sss.pgh.pa.us> Discussion: https://postgr.es/m/177883653690.764749.14038057906859461991@wrigleys.postgresql.org Backpatch-through: 14
This commit is contained in:
Tom Lane
parent
092b570a72
commit
4c35d93e49
1 changed files with 1 additions and 1 deletions
|
|
@ -299,7 +299,7 @@ Branch: REL_14_STABLE [b282280e9] 2026-05-11 05:13:51 -0700
|
|||
|
||||
<para>
|
||||
Use <function>timingsafe_bcmp()</function> instead
|
||||
of <function>memcpy()</function> or <function>strcmp()</function>
|
||||
of <function>memcmp()</function> or <function>strcmp()</function>
|
||||
when checking passwords, hashes, etc. It is not known whether the
|
||||
data dependency of those functions is usefully exploitable in any of
|
||||
these places, but in the interests of safety, replace them.
|
||||
|
|
|
|||
Loading…
Reference in a new issue