[BUGS] BUG #1189: unbounded string copy in postmaster

#1

The following bug has been logged online:

Bug reference: 1189
Logged by: George Gal

Email address: ggal (AT) vsecurity (DOT) com

PostgreSQL version: 7.4

Operating system: FreeBSD 5.2 (Current)

Description: unbounded string copy in postmaster

Details:

Looks like the -o command line option doesn't perform any bounds checking on
the option before copying to the ExtraOptions[1024] char array. [line 529 of
postmaster.c]

---------------------------(end of broadcast)---------------------------
TIP 5: Have you checked our extensive FAQ?

http://www.postgresql.org/docs/faqs/FAQ.html

#2

"PostgreSQL Bugs List" <pgsql-bugs (AT) postgresql (DOT) org> writes:

Quote:

Looks like the -o command line option doesn't perform any bounds checking on
the option before copying to the ExtraOptions[1024] char array. [line 529 of
postmaster.c]

I cannot get super excited about this, since the person or script
starting the postmaster has to be trusted anyway. But I've tweaked
the code to prevent a buffer overrun here.

regards, tom lane

---------------------------(end of broadcast)---------------------------
TIP 2: you can get off all lists at once with the unregister command
(send "unregister YourEmailAddressHere" to majordomo (AT) postgresql (DOT) org)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

[BUGS] BUG #1189: unbounded string copy in postmaster

mailing.database.pgsql-bugs mailing.database.pgsql-bugs

[BUGS] BUG #1189: unbounded string copy in postmaster - 07-07-2004 , 12:31 PM

Re: [BUGS] BUG #1189: unbounded string copy in postmaster - 07-10-2004 , 06:45 PM