Skip to content
Snippets Groups Projects
Commit 56232f98 authored by Noah Misch's avatar Noah Misch
Browse files

pgcrypto: Detect and report too-short crypt() salts. 

Certain short salts crashed the backend or disclosed a few bytes of
backend memory.  For existing salt-induced error conditions, emit a
message saying as much.  Back-patch to 9.0 (all supported versions).

Josh Kupershmidt

Security: CVE-2015-5288
parent e07cfef3
No related branches found
No related tags found
Hide whitespace changes
Inline Side-by-side
Showing
with 103 additions and 6 deletions
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment