From: | Florian Weimer <Weimer(at)CERT(dot)Uni-Stuttgart(dot)DE> |
---|---|
To: | Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> |
Cc: | pgsql-hackers(at)postgresql(dot)org |
Subject: | Re: why was libpq.so's version number bumped? |
Date: | 2003-01-03 23:18:55 |
Message-ID: | 87u1gprfds.fsf@Login.CERT.Uni-Stuttgart.DE |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgsql-hackers |
Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:
>> Hmm? On 7.2, an unpriviliged database user can read the more or less
>> the whole memory image of the server process. On 7.3, this has been
>> fixed.
>
> Huh. Never heard that before.
It's the cash_out(2) crash, but with some other conversion function:
rusfw=> SELECT byteain(134512640);
byteain
---------------------
\177ELF\001\001\001
(1 row)
rusfw=>
(Of course, the address varies from machine to machine.)
--
Florian Weimer Weimer(at)CERT(dot)Uni-Stuttgart(dot)DE
University of Stuttgart http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT fax +49-711-685-5898
From | Date | Subject | |
---|---|---|---|
Next Message | Bruce Momjian | 2003-01-03 23:31:41 | Re: Upgrading rant. |
Previous Message | Bruce Momjian | 2003-01-03 23:15:28 | Re: why was libpq.so's version number bumped? |