[postgis-tickets] [PostGIS] #3866: Server crashing sometimes from large values in twkb encoding
PostGIS
trac at osgeo.org
Mon Sep 25 13:57:13 PDT 2017
#3866: Server crashing sometimes from large values in twkb encoding
---------------------+---------------------------
Reporter: nicklas | Owner: nicklas
Type: defect | Status: assigned
Priority: medium | Milestone: PostGIS 2.3.4
Component: postgis | Version: 2.3.x
Keywords: |
---------------------+---------------------------
The attached geometry writes beyond the buffer.
In some cases it crashes the server.
It is caused from a large value that encodes to a variable integer of 10
bytes instead of the expected max 8 bytes. Most of the time this doesn't
do any harm. But if the preceding point leaves exactly 8 bytes left in the
buffer, the space check will not reallocate and writing 9 or 10 bytes will
cause writing beyond the buffer.
--
Ticket URL: <https://trac.osgeo.org/postgis/ticket/3866>
PostGIS <http://trac.osgeo.org/postgis/>
The PostGIS Trac is used for bug, enhancement & task tracking, a user and developer wiki, and a view into the subversion code repository of PostGIS project.
More information about the postgis-tickets
mailing list