Re: [SECURITY] DoS attack on backend possible (was: Re:

Tom Lane <tgl@sss.pgh.pa.us>

From: Tom Lane <tgl@sss.pgh.pa.us>
To: Justin Clift <justin@postgresql.org>
Cc: Florian Weimer <Weimer@CERT.Uni-Stuttgart.DE>, pgsql-hackers@postgresql.org
Date: 2002-08-11T17:09:41Z
Lists: pgsql-hackers
Justin Clift <justin@postgresql.org> writes:
> Am I understanding this right:
>  - A PostgreSQL 7.2.1 server can be crashed if it gets passed certain
> date values which would be accepted by standard "front end" parsing? 

AFAIK it's a buffer overrun issue, so anything that looks like a
reasonable date would *not* cause the problem.

			regards, tom lane