database/postgres
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-06-14 18:42:34 +03:00
Code Activity

Correct pg_recvlogical server version test.

Browse Source 
The predecessor test boiled down to "PQserverVersion(NULL) >= 100000",
which is always false.  No release includes that, so it could not have
reintroduced CVE-2018-1058.  Back-patch to 9.4, like the addition of the
predecessor in commit 8d2814f274.

Discussion: https://postgr.es/m/20180422215551.GB2676194@rfd.leadboat.com
This commit is contained in:
Noah Misch
2018-04-25 18:50:29 -07:00
parent 58fec95268
commit bb532859f4
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/bin/pg_basebackup/streamutil.c
View File

@ -212,7 +212,7 @@ GetConnection(void)
* 10, so the search path cannot be changed (by us or attackers) on * 10, so the search path cannot be changed (by us or attackers) on
* earlier versions. * earlier versions.
*/ */
if (dbname != NULL && PQserverVersion(conn) >= 100000) if (dbname != NULL && PQserverVersion(tmpconn) >= 100000)
{ {
PGresult *res; PGresult *res;