rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
postgresql/src/backend
History
Andrew Dunstan 6d10f4e9d7 Only adjust negative indexes in json_get up to the length of the path. 
The previous code resulted in memory access beyond the path bounds. The
cure is to move it into a code branch that checks the value of lex_level
is within the correct bounds.

Bug reported and diagnosed by Piotr Stefaniak.
 		2015-07-28 17:54:13 -04:00
..
access Plug RLS related information leak in pg_stats view. 2015-07-28 13:21:22 -07:00
bootstrap pgindent run for 9.5 2015-05-23 21:35:49 -04:00
catalog Plug RLS related information leak in pg_stats view. 2015-07-28 13:21:22 -07:00
commands Improve RLS handling in copy.c 2015-07-27 16:48:26 -04:00
executor Plug RLS related information leak in pg_stats view. 2015-07-28 13:21:22 -07:00
foreign Code review for foreign/custom join pushdown patch. 2015-05-10 14:36:36 -04:00
lib Use appendStringInfoString/Char et al where appropriate. 2015-07-02 12:36:03 +03:00
libpq Remove ssl renegotiation support. 2015-07-28 22:06:31 +02:00
main Revoke support for strxfrm() that write past the specified array length. 2015-07-08 20:44:21 -04:00
nodes Redesign tablesample method API, and do extensive code review. 2015-07-25 14:39:00 -04:00
optimizer Remove an unsafe Assert, and explain join_clause_is_movable_into() better. 2015-07-28 13:20:39 -04:00
parser Fix flattening of nested grouping sets. 2015-07-26 16:50:29 +02:00
po Translation updates 2015-06-28 23:56:55 -04:00
port Make WaitLatchOrSocket's timeout detection more robust. 2015-07-18 11:47:13 -04:00
postmaster Further code review for pg_stat_ssl patch. 2015-07-27 16:29:14 -04:00
regex Replace a bunch more uses of strncpy() with safer coding. 2015-01-24 13:05:42 -05:00
replication Fix logical decoding bug leading to inefficient reopening of files. 2015-07-07 13:12:46 +02:00
rewrite Plug RLS related information leak in pg_stats view. 2015-07-28 13:21:22 -07:00
snowball Remove no-longer-required function declarations. 2015-05-24 12:20:23 -04:00
storage Reduce chatter from signaling of autovacuum workers. 2015-07-28 17:34:23 -04:00
tcop Add ALTER OPERATOR command, for changing selectivity estimator functions. 2015-07-14 18:17:55 +03:00
tsearch pgindent run for 9.5 2015-05-23 21:35:49 -04:00
utils Only adjust negative indexes in json_get up to the length of the path. 2015-07-28 17:54:13 -04:00
.gitignore Add .gitignore entries for AIX-specific intermediate build artifacts. 2015-07-08 20:44:22 -04:00
Makefile AIX: Link the postgres executable with -Wl,-brtllib. 2015-07-15 21:00:26 -04:00
common.mk Remove maintainer-check target, fold into normal build 2013-10-10 20:11:56 -04:00
nls.mk Translation updates 2015-02-01 23:23:40 -05:00