database/postgres
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-11-03 09:13:20 +03:00
Code Activity

Correct pg_recvlogical server version test.

Browse Source 
The predecessor test boiled down to "PQserverVersion(NULL) >= 100000",
which is always false.  No release includes that, so it could not have
reintroduced CVE-2018-1058.  Back-patch to 9.4, like the addition of the
predecessor in commit 8d2814f274.

Discussion: https://postgr.es/m/20180422215551.GB2676194@rfd.leadboat.com
This commit is contained in:
Noah Misch
2018-04-25 18:50:29 -07:00
parent c76d0eed27
commit 32c2476293
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/bin/pg_basebackup/streamutil.c
View File

@@ -215,7 +215,7 @@ GetConnection(void)
* 10, so the search path cannot be changed (by us or attackers) on * 10, so the search path cannot be changed (by us or attackers) on
* earlier versions. * earlier versions.
*/ */
if (dbname != NULL && PQserverVersion(conn) >= 100000) if (dbname != NULL && PQserverVersion(tmpconn) >= 100000)
{ {
PGresult *res; PGresult *res;