[postgis-tickets] [PostGIS] #2195: [Security] Crash Postgres Service when call ST_OffsetCurve with Identicall point in LineString

Wed Jan 30 07:35:20 PST 2013

#2195: [Security] Crash Postgres Service when call ST_OffsetCurve with Identicall
point in LineString
---------------------------------------------+------------------------------
 Reporter:  unnamed38                        |       Owner:  pramsey      
     Type:  defect                           |      Status:  new          
 Priority:  high                             |   Milestone:  PostGIS 2.0.3
Component:  postgis                          |     Version:  2.0.x        
 Keywords:  ST_offsetCurve Crash postgres 9  |  
---------------------------------------------+------------------------------
 Service postgresSQL 9 crash when it calls the ST_OffsetCurve method with
 parameter: a linestring composed by same following point point.
 See as example:

 -- Crash service postgres 9
 SELECT ST_AsText(ST_OffsetCurve(geom,   -15, 'quad_segs=4 join=round')) As
 notsocurvy
 FROM ST_GeomFromText('LINESTRING(0 0, 1 1, 2 2, 2 2, 2 1, 3 3, 3 1)') As
 geom;

 Test

 Windows 7 64bits
 SELECT PostGIS_full_version(); -- "POSTGIS="2.0.1 r9979"
 GEOS="3.3.5-CAPI-1.7.5" PROJ="Rel. 4.8.0, 6 March 2012" GDAL="GDAL 1.9.1,
 released 2012/05/15" LIBXML="2.7.8" LIBJSON="UNKNOWN" RASTER"
 SELECT version(); -- "PostgreSQL 9.1.4, compiled by Visual C++ build 1500,
 64-bit"

 Windows 7 32bits
 SELECT PostGIS_full_version(); -- "POSTGIS="2.0.1 r9979"
 GEOS="3.3.5-CAPI-1.7.5" PROJ="Rel. 4.8.0, 6 March 2012" GDAL="GDAL 1.9.1,
 released 2012/05/15 GDAL_DATA not found" LIBXML="2.7.8" LIBJSON="UNKNOWN"
 RASTER"
 SELECT version(); -- "PostgreSQL 9.2.2, compiled by Visual C++ build 1600,
 32-bit"

 Linux RedHat 64bits
 SELECT PostGIS_full_version(); -- "POSTGIS="2.0.0 r9605"
 GEOS="3.3.3-CAPI-1.7.4" PROJ="Rel. 4.7.1, 23 September 2009" GDAL="GDAL
 1.7.2, released 2010/04/23" LIBXML="2.7.6" TOPOLOGY RASTER"
 SELECT version(); -- "PostgreSQL 9.1.3 on x86_64-unknown-linux-gnu,
 compiled by gcc (GCC) 4.4.6 20110731 (Red Hat 4.4.6-3), 64-bit"

 I know that using linestring with same following point is not a good way
 to do but the crash of the database is a real security problem

-- 
Ticket URL: <http://trac.osgeo.org/postgis/ticket/2195>
PostGIS <http://trac.osgeo.org/postgis/>
The PostGIS Trac is used for bug, enhancement & task tracking, a user and developer wiki, and a view into the subversion code repository of PostGIS project.