> I've just finished a quick grep through the backend sources for
> "sprintf", and identified the following files as containing possible
> problems:
> src/backend/port/dynloader/freebsd.c
This one is perhaps dodgy. You ahve this:
static char error_message[BUFSIZ];
Then you have this:
sprintf(error_message, "dlopen (%s) not supported", file);
Where file isn't restricted in length I think...
So does that mean if you go:
CREATE FUNCTION blah AS '/home/chriskl/[90000 characters here].so' LANGUAGE
'C';
Sort of thing you could crash it?
Chris