diff options
| author | Tom Lane | 2015-05-19 22:33:58 +0000 |
|---|---|---|
| committer | Tom Lane | 2015-05-19 22:33:58 +0000 |
| commit | 760e7ad47959acc3908d3824a20e784f6aed9001 (patch) | |
| tree | 063684384b2c8b5f04796298b297fa807c451e73 | |
| parent | cf893530aff6d3acb893e0fbd80fd9d814605b74 (diff) | |
Last-minute updates for release notes.REL9_0_20
Revise description of CVE-2015-3166, in line with scaled-back patch.
Change release date.
Security: CVE-2015-3166
| -rw-r--r-- | doc/src/sgml/release-9.0.sgml | 26 |
1 files changed, 16 insertions, 10 deletions
diff --git a/doc/src/sgml/release-9.0.sgml b/doc/src/sgml/release-9.0.sgml index a3d9461fa6f..9794b5b3b76 100644 --- a/doc/src/sgml/release-9.0.sgml +++ b/doc/src/sgml/release-9.0.sgml @@ -6,7 +6,7 @@ <note> <title>Release Date</title> - <simpara>2015-05-21</simpara> + <simpara>2015-05-22</simpara> </note> <para> @@ -58,18 +58,24 @@ <listitem> <para> - Consistently check for failure of the <function>*printf()</> family of - functions (Noah Misch) + Improve detection of system-call failures (Noah Misch) </para> <para> - Most calls of these functions did not consider the possibility that - the functions could fail with, eg, out-of-memory conditions. The usual - result would just be missing output, but crashes or exposure of - unintended information are also possible. To protect against such - risks uniformly, create wrappers around these functions that throw an - error on failure. Also add missing error checks to a few - security-relevant calls of other system functions. + Our replacement implementation of <function>snprintf()</> failed to + check for errors reported by the underlying system library calls; + the main case that might be missed is out-of-memory situations. + In the worst case this might lead to information exposure, due to our + code assuming that a buffer had been overwritten when it hadn't been. + Also, there were a few places in which security-relevant calls of other + system library functions did not check for failure. + </para> + + <para> + It remains possible that some calls of the <function>*printf()</> + family of functions are vulnerable to information disclosure if an + out-of-memory error occurs at just the wrong time. We judge the risk + to not be large, but will continue analysis in this area. (CVE-2015-3166) </para> </listitem> |