pgsql: Fix possible buffer overrun and/or unportable behavior in

From: tgl(at)postgresql(dot)org (Tom Lane)
To: pgsql-committers(at)postgresql(dot)org
Subject: pgsql: Fix possible buffer overrun and/or unportable behavior in
Date: 2009-09-15 02:31:15
Message-ID: 20090915023115.A9D98753FBC@cvs.postgresql.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-committers

Log Message:
-----------
Fix possible buffer overrun and/or unportable behavior in pg_md5_encrypt()
if salt_len == 0. This seems to be mostly academic, since nearly all calling
code paths guarantee nonempty salt; the only case that doesn't is
PQencryptPassword where the caller could mistakenly pass an empty username.
So, fix it but don't bother backpatching. Per ljb.

Modified Files:
--------------
pgsql/src/backend/libpq:
md5.c (r1.36 -> r1.37)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/backend/libpq/md5.c?r1=1.36&r2=1.37)

Browse pgsql-committers by date

  From Date Subject
Next Message Michael Meskes 2009-09-15 08:44:57 pgsql: Applied patch by Boszormenyi Zoltan <zb@cybertec.at> to add
Previous Message Josh Berkus 2009-09-14 17:14:40 Re: Re: [COMMITTERS] Can not create more than 32766 databases in ufs file system.