diff options
| author | Tom Lane <tgl@sss.pgh.pa.us> | 2016-10-14 16:28:34 -0400 |
|---|---|---|
| committer | Tom Lane <tgl@sss.pgh.pa.us> | 2016-10-14 16:28:34 -0400 |
| commit | 253e30c001e8e870a303836a1e321311a02294e2 (patch) | |
| tree | b8f0994dedacaa31365b3fcc75447d9ecc317e4b /src/backend/access/gist/gist.c | |
| parent | fb6825fe57651dfd4dfe9d2041c715b03c5c6323 (diff) | |
| download | postgresql-253e30c001e8e870a303836a1e321311a02294e2.tar.gz postgresql-253e30c001e8e870a303836a1e321311a02294e2.zip | |
Fix assorted integer-overflow hazards in varbit.c.
bitshiftright() and bitshiftleft() would recursively call each other
infinitely if the user passed INT_MIN for the shift amount, due to integer
overflow in negating the shift amount. To fix, clamp to -VARBITMAXLEN.
That doesn't change the results since any shift distance larger than the
input bit string's length produces an all-zeroes result.
Also fix some places that seemed inadequately paranoid about input typmods
exceeding VARBITMAXLEN. While a typmod accepted by anybit_typmodin() will
certainly be much less than that, at least some of these spots are
reachable with user-chosen integer values.
Andreas Seltenreich and Tom Lane
Discussion: <87d1j2zqtz.fsf@credativ.de>
Diffstat (limited to 'src/backend/access/gist/gist.c')
0 files changed, 0 insertions, 0 deletions