Monthly Archives: July 2016

postgresql: psql: heap-based buffer overflow in gets_fromFile (input.c)

Description: PostgreSQL is a powerful, open source object-relational database system. After the blog post of lcamtuf and hanno I tried to fuzz psql which is the PostgreSQL interactive terminal. After make the first call on postgresql security contact they state … Continue reading

Posted in advisories, security | Leave a comment

paps: heap-based buffer overflow in read_file() (paps.c)

Description: Paps is an UTF-8 to PostScript converter that makes use of pango. It provides both a stand alone command line tool as well as a library It was discovered that a crafted/empty file is able to cause an heap-based … Continue reading

Posted in advisories, security | Leave a comment