Re: BUG #19452: heap-buffer-overflow in `pg_basebackup --format=tar --gzip`

From: Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>
To: alexander(dot)kurdakov(at)tantorlabs(dot)ru
Cc: pgsql-bugs(at)lists(dot)postgresql(dot)org
Subject: Re: BUG #19452: heap-buffer-overflow in `pg_basebackup --format=tar --gzip`
Date: 2026-04-08 18:59:43
Message-ID: 3099177.1775674783@sss.pgh.pa.us
Views: Whole Thread | Raw Message | Download mbox | Resend email
Thread:
Lists: pgsql-bugs

PG Bug reporting form <noreply(at)postgresql(dot)org> writes:
> In astreamer_tar_parser_content(), the ASTREAMER_MEMBER_TRAILER case
> passes the wrong pointer to astreamer_content().

Indeed. I think we fixed this a few days ago in commits 01d58d7e3
et al. Could you test HEAD or v18 branch tip and verify that what
you see is fixed?

regards, tom lane

In response to

Responses

Browse pgsql-bugs by date

  From Date Subject
Next Message Александр Курдаков 2026-04-08 23:19:38 Re: BUG #19452: heap-buffer-overflow in `pg_basebackup --format=tar --gzip`
Previous Message Richard Guo 2026-04-08 09:42:12 Re: BUG #19405: Assertion in eval_windowaggregates() fails due to integer overflow