hcq/postgresql
1
0
Fork 0
mirror of https://git.postgresql.org/git/postgresql.git synced 2026-02-25 07:47:03 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
0c33d560899f80f23bb393269e992fa104e8c79f
postgresql/src/backend
History
Thomas Munro 4c08960d97 Code coverage for most pg_mblen* calls. 
A security patch changed them today, so close the coverage gap now.
Test that buffer overrun is avoided when pg_mblen*() requires more
than the number of bytes remaining.

This does not cover the calls in dict_thesaurus.c or in dict_synonym.c.
That code is straightforward.  To change that code's input, one must
have access to modify installed OS files, so low-privilege users are not
a threat.  Testing this would likewise require changing installed
share/postgresql/tsearch_data, which was enough of an obstacle to not
bother.

Security: CVE-2026-2006
Backpatch-through: 14
Co-authored-by: Thomas Munro <thomas.munro@gmail.com>
Co-authored-by: Noah Misch <noah@leadboat.com>
Reviewed-by: Heikki Linnakangas <hlinnaka@iki.fi>
2026-02-09 12:29:41 +13:00
..
access
Fix various instances of undefined behavior
2026-02-04 17:59:18 +07:00
archive
Redesign archive modules
2023-02-17 14:26:42 +09:00
backup
Fix error message related to end TLI in backup manifest
2026-01-18 17:25:01 +09:00
bootstrap
Fix CREATE INDEX progress reporting for multi-level partitioning.
2023-03-25 15:34:03 -04:00
catalog
Replace pg_mblen() with bounds-checked versions.
2026-02-09 12:29:15 +13:00
commands
Fix trigger transition table capture for MERGE in CTE queries.
2026-01-24 11:30:50 +00:00
executor
Fix bogus ctid requirement for dummy-root partitioned targets
2026-01-23 10:23:18 +09:00
foreign
Restrict accesses to non-system views and foreign tables during pg_dump.
2024-08-05 06:05:28 -07:00
jit
jit: Add missing inline pass for LLVM >= 17.
2026-01-22 16:10:08 +13:00
lib
Accommodate very large dshash tables.
2024-12-17 15:24:45 -06:00
libpq
Fix build breakage on Solaris-alikes with late-model GCC.
2025-07-23 15:44:29 -04:00
main
Avoid possible crash within libsanitizer.
2025-11-05 11:09:30 -05:00
nodes
Build whole-row Vars the same way during parsing and planning.
2025-03-12 11:47:19 -04:00
optimizer
Fix possible issue of a WindowFunc being in the wrong WindowClause
2026-01-26 23:47:37 +13:00
parser
Fix possible incorrect column reference in ERROR message
2026-01-09 11:03:48 +13:00
partitioning
Fix creation of partition descriptor during concurrent detach+drop
2024-08-12 18:17:56 -04:00
po
Translation updates
2026-02-08 15:11:02 +01:00
port
Don't treat EINVAL from semget() as a hard failure.
2025-08-13 11:59:47 -04:00
postmaster
Fix snapshot handling bug in recent BRIN fix
2025-11-04 20:31:43 +01:00
regex
Avoid assertion due to disconnected NFA sub-graphs in regex parsing.
2024-11-15 18:23:38 -05:00
replication
Prevent invalidation of newly created replication slots.
2026-01-08 07:07:23 +00:00
rewrite
Avoid rewriting data-modifying CTEs more than once.
2025-11-29 12:33:04 +00:00
snowball
Avoid null pointer dereference crash after OOM in Snowball stemmers.
2025-02-18 21:23:59 -05:00
statistics
Fix security checks in selectivity estimation functions.
2025-08-11 09:10:17 +01:00
storage
Add file_extend_method=posix_fallocate,write_zeros.
2026-02-06 17:43:49 +13:00
tcop
Check for CREATE privilege on the schema in CREATE STATISTICS.
2025-11-10 09:00:00 -06:00
tsearch
Replace pg_mblen() with bounds-checked versions.
2026-02-09 12:29:15 +13:00
utils
Code coverage for most pg_mblen* calls.
2026-02-09 12:29:41 +13:00
.gitignore
common.mk
Blind attempt to fix LLVM dependency in the backend
2022-09-15 10:53:48 +07:00
Makefile
Fix make headerscheck
2024-04-27 11:38:41 +07:00
meson.build
Add win32ver data to meson-built postgres.exe.
2023-06-12 07:40:38 -07:00
nls.mk
Add missing gettext triggers
2023-05-10 13:51:51 +02:00