| From: | Gavin Sherry <swm(at)linuxworld(dot)com(dot)au> |
|---|---|
| To: | Florian Weimer <Weimer(at)CERT(dot)Uni-Stuttgart(dot)DE> |
| Cc: | pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: [SECURITY] DoS attack on backend possible (was: Re: |
| Date: | 2002-08-12 08:27:27 |
| Message-ID: | Pine.LNX.4.21.0208121826110.16336-100000@linuxworld.com.au |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-committers pgsql-hackers |
On Mon, 12 Aug 2002, Florian Weimer wrote:
> Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> writes:
>
> > Justin Clift <justin(at)postgresql(dot)org> writes:
> >> Am I understanding this right:
> >> - A PostgreSQL 7.2.1 server can be crashed if it gets passed certain
> >> date values which would be accepted by standard "front end" parsing?
> >
> > AFAIK it's a buffer overrun issue, so anything that looks like a
> > reasonable date would *not* cause the problem.
>
> Yes, but if you just check that the date given by the user matches the
> regular expression "[0-9]+-[0-9]+-[0-9]+", it's still possible to
> crash the backend.
Florian,
Anyone who is using that regular expression in an attempt to validate a
user supplied date is already in trouble.
Gavin
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Gerhard Hintermayer | 2002-08-12 09:16:35 | libpgtcl modifications |
| Previous Message | Florian Weimer | 2002-08-12 08:23:29 | Re: [SECURITY] DoS attack on backend possible (was: Re: |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Greg Copeland | 2002-08-12 13:24:16 | Re: [SECURITY] DoS attack on backend possible (was: Re: |
| Previous Message | Florian Weimer | 2002-08-12 08:23:29 | Re: [SECURITY] DoS attack on backend possible (was: Re: |