upstream/postgresql
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2026-02-14 16:23:59 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
postgresql/contrib/intarray
History
Tom Lane 23f2e93aff Prevent buffer overrun while parsing an integer in a "query_int" value. 
contrib/intarray's gettoken() uses a fixed-size buffer to collect an
integer's digits, and did not guard against overrunning the buffer.
This is at least a backend crash risk, and in principle might allow
arbitrary code execution.  The code didn't check for overflow of the
integer value either, which while not presenting a crash risk was still
bad.

Thanks to Apple Inc's security team for reporting this issue and supplying
the fix.

Security: CVE-2010-4015
2011-01-27 17:43:34 -05:00
..
bench Add CVS tag lines to files that were lacking them. 2006-03-11 04:38:42 +00:00
data 1. Fixed error with empty array ( '{}' ), 2001-08-04 19:35:32 +00:00
expected Remove ill-considered (not to mention undocumented) attempt to make 2007-09-14 03:25:31 +00:00
sql Remove ill-considered (not to mention undocumented) attempt to make 2007-09-14 03:25:31 +00:00
.gitignore Some more gitignore cleanups: cover contrib and PL regression test outputs. 2010-09-22 17:23:05 -04:00
_int.h Modify LOOPBYTE/LOOPBIT macros to be more logical; rather than have the 2007-11-16 00:13:02 +00:00
_int.sql.in Add CVS version labels to all install/uninstall scripts. 2007-11-13 04:24:29 +00:00
_int_bool.c Prevent buffer overrun while parsing an integer in a "query_int" value. 2011-01-27 17:43:34 -05:00
_int_gin.c Fix ginint4_queryextract() to actually do what it was intended to do for an 2010-03-25 15:50:22 +00:00
_int_gist.c Re-run pgindent with updated list of typedefs. (Updated README should 2007-11-15 22:25:18 +00:00
_int_op.c Magic blocks don't do us any good unless we use 'em ... so install one 2006-05-30 22:12:16 +00:00
_int_tool.c Replace direct assignments to VARATT_SIZEP(x) with SET_VARSIZE(x, len). 2007-02-27 23:48:10 +00:00
_intbig_gist.c Run pgindent on remaining files now that LOOPBYTE is a usable macro. 2007-11-16 01:12:24 +00:00
Makefile Remove references to READMEs from /contrib Makefiles. 2007-11-10 23:59:52 +00:00
uninstall__int.sql Add CVS version labels to all install/uninstall scripts. 2007-11-13 04:24:29 +00:00