pgx/example at 0f77a2d028414a616da37d0a07813dfaf61e5d5f - pgx

History

Jack Christensen adbb38f298 Do not allow protocol messages larger than ~1GB The PostgreSQL server will reject messages greater than ~1 GB anyway. However, worse than that is that a message that is larger than 4 GB could wrap the 32-bit integer message size and be interpreted by the server as multiple messages. This could allow a malicious client to inject arbitrary protocol messages. https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv	2024-03-04 09:09:29 -06:00
..
pgfortune	Do not allow protocol messages larger than ~1GB	2024-03-04 09:09:29 -06:00

Jack Christensen adbb38f298 Do not allow protocol messages larger than ~1GB

The PostgreSQL server will reject messages greater than ~1 GB anyway.
However, worse than that is that a message that is larger than 4 GB
could wrap the 32-bit integer message size and be interpreted by the
server as multiple messages. This could allow a malicious client to
inject arbitrary protocol messages.

https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv

2024-03-04 09:09:29 -06:00

pgfortune

Do not allow protocol messages larger than ~1GB

2024-03-04 09:09:29 -06:00