repeat_fix-2.patch

text/x-patch

Filename: repeat_fix-2.patch
Type: text/x-patch
Part: 0
Message: Re: @(#)Mordred Labs advisory 0x0003: Buffer overflow in PostgreSQL (fwd)

Patch

Same data as JSON: GET /api/v1/attachments/:id/patch the parsed metadata as JSON — format, series position, per-file stats; never the diff bytes. API reference →
Format: context
File+
src/backend/utils/adt/oracle_compat.c 4 0
Index: src/backend/utils/adt/oracle_compat.c
===================================================================
RCS file: /var/lib/cvs/pgsql-server/src/backend/utils/adt/oracle_compat.c,v
retrieving revision 1.38
diff -c -r1.38 oracle_compat.c
*** src/backend/utils/adt/oracle_compat.c	20 Jun 2002 20:51:45 -0000	1.38
--- src/backend/utils/adt/oracle_compat.c	20 Aug 2002 20:51:20 -0000
***************
*** 997,1002 ****
--- 997,1006 ----
  	slen = (VARSIZE(string) - VARHDRSZ);
  	tlen = (VARHDRSZ + (count * slen));
  
+ 	/* Check for integer overflow */
+ 	if (slen != 0 && count != 0 && tlen / slen != count)
+ 		elog(ERROR, "Requested buffer is too large.");
+ 
  	result = (text *) palloc(tlen);
  
  	VARATT_SIZEP(result) = tlen;