-
- Downloads
Fix buffer overrun after incomplete read in pullf_read_max().
Most callers pass a stack buffer. The ensuing stack smash can crash the server, and we have not ruled out the viability of attacks that lead to privilege escalation. Back-patch to 9.0 (all supported versions). Marko Tiikkaja Security: CVE-2015-0243
Showing
- contrib/pgcrypto/expected/pgp-info.out 2 additions, 1 deletioncontrib/pgcrypto/expected/pgp-info.out
- contrib/pgcrypto/expected/pgp-pubkey-decrypt.out 25 additions, 0 deletionscontrib/pgcrypto/expected/pgp-pubkey-decrypt.out
- contrib/pgcrypto/mbuf.c 1 addition, 0 deletionscontrib/pgcrypto/mbuf.c
- contrib/pgcrypto/sql/pgp-pubkey-decrypt.sql 26 additions, 0 deletionscontrib/pgcrypto/sql/pgp-pubkey-decrypt.sql
Loading
Please register or sign in to comment