From 32be1c8e900b89a89ec5e3a064c6b6010869d062 Mon Sep 17 00:00:00 2001
From: Bruce Momjian <bruce@momjian.us>
Date: Sat, 15 Feb 2014 11:50:56 -0500
Subject: Remove use of sscanf in pg_upgrade, and add C comment to pg_dump

Per report from Jackie Chang
---
 src/bin/pg_dump/pg_backup_directory.c | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src')

diff --git a/src/bin/pg_dump/pg_backup_directory.c b/src/bin/pg_dump/pg_backup_directory.c
index 71b96bd9180..1bed8a9fea5 100644
--- a/src/bin/pg_dump/pg_backup_directory.c
+++ b/src/bin/pg_dump/pg_backup_directory.c
@@ -452,6 +452,7 @@ _LoadBlobs(ArchiveHandle *AH, RestoreOptions *ropt)
 		char		fname[MAXPGPATH];
 		char		path[MAXPGPATH];
 
+		/* Can't overflow because line and fname are the same length. */
 		if (sscanf(line, "%u %s\n", &oid, fname) != 2)
 			exit_horribly(modulename, "invalid line in large object TOC file \"%s\": \"%s\"\n",
 						  fname, line);
-- 
cgit v1.2.3