[JBoss JIRA] (TEIID-5954) Read long methods allow for overflow
by Steven Hawkins (Jira)
Steven Hawkins created TEIID-5954:
-------------------------------------
Summary: Read long methods allow for overflow
Key: TEIID-5954
URL: https://issues.redhat.com/browse/TEIID-5954
Project: Teiid
Issue Type: Bug
Components: ODBC, Query Engine
Reporter: Steven Hawkins
Assignee: Steven Hawkins
Fix For: 14.0, 13.0.3, 13.1.1
The engine and odbc use utility methods for reading long values that do not cast intermediate values to long and thus the higher bytes can overflow. This corrupts uid/gid values for defrag when they exceed integer limits - which may not be much of an issue in practice. However for pg/ODBC the readLong method can corrupt long and double binary bind values.
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
4 years, 7 months
[JBoss JIRA] (TEIID-5947) When hidden resolvable is false user anon dynamic sql should not be able to see hidden objects
by Steven Hawkins (Jira)
[ https://issues.redhat.com/browse/TEIID-5947?focusedWorklogId=12451057&pag... ]
Steven Hawkins logged work on TEIID-5947:
-----------------------------------------
Author: Steven Hawkins
Created on: 15/May/20 1:25 PM
Start Date: 15/May/20 1:25 PM
Worklog Time Spent: 3 hours
Issue Time Tracking
-------------------
Remaining Estimate: 0 minutes (was: 3 hours)
Time Spent: 3 hours
Worklog Id: (was: 12451057)
> When hidden resolvable is false user anon dynamic sql should not be able to see hidden objects
> ----------------------------------------------------------------------------------------------
>
> Key: TEIID-5947
> URL: https://issues.redhat.com/browse/TEIID-5947
> Project: Teiid
> Issue Type: Bug
> Components: Query Engine
> Reporter: Steven Hawkins
> Assignee: Steven Hawkins
> Priority: Major
> Fix For: 14.0
>
> Original Estimate: 3 hours
> Time Spent: 3 hours
> Remaining Estimate: 0 minutes
>
> Dynamic sql is always resolved against the design time metadata, so hidden objects are effectively visible.
--
This message was sent by Atlassian Jira
(v7.13.8#713008)
4 years, 7 months