1dc7551586
Fix buffer overrun after incomplete read in pullf_read_max().
...
Most callers pass a stack buffer. The ensuing stack smash can crash the
server, and we have not ruled out the viability of attacks that lead to
privilege escalation. Back-patch to 9.0 (all supported versions).
Marko Tiikkaja
Security: CVE-2015-0243
2015-02-02 10:00:45 -05:00
0a78320057
pgindent run for 9.4
...
This includes removing tabs after periods in C comments, which was
applied to back branches, so this change should not effect backpatching.
2014-05-06 12:12:18 -04:00
9fe55259fd
pgcrypto: fix memset() calls that might be optimized away
...
Specifically, on-stack memset() might be removed, so:
* Replace memset() with px_memset()
* Add px_memset to copy_crlf()
* Add px_memset to pgp-s2k.c
Patch by Marko Kreen
Report by PVS-Studio
Backpatch through 8.4.
2014-04-17 12:37:53 -04:00
652300f539
pgcrypto: Remove inappropriate const qualifier
...
The function in question does not in fact ensure that the passed
argument is not changed, and the callers don't care much either.
2012-01-15 14:00:52 +02:00
9f2e211386
Remove cvs keywords from all files.
2010-09-20 22:08:53 +02:00
d747140279
8.4 pgindent run, with new combined Linux/FreeBSD/MinGW typedef list
...
provided by Andrew.
2009-06-11 14:49:15 +00:00
37e347a7e0
Get rid of overly cute, unportable, probably not very efficient substitute
...
for 'bool'. Per buildfarm warnings.
2007-07-15 23:57:13 +00:00
1dc3498251
Standard pgindent run for 8.1.
2005-10-15 02:49:52 +00:00
e997758cb6
More pgcrypto fixes: avoid bogus alignment assumptions in sha2,
...
be more wary about having a value for BYTE_ORDER, clean up randomly-
chosen ways of including Postgres core headers.
Marko Kreen and Tom Lane
2005-07-11 15:07:59 +00:00
e94dd6ab91
Add missing pgcrypto files from previous commit.
2005-07-10 13:46:29 +00:00
Noah Misch
Bruce Momjian
Peter Eisentraut
Magnus Hagander
Tom Lane