Update release notes.

author Tom Lane <tgl@sss.pgh.pa.us>

Thu, 27 Jan 2011 22:45:55 +0000 (17:45 -0500)

committer Tom Lane <tgl@sss.pgh.pa.us>

Thu, 27 Jan 2011 22:47:32 +0000 (17:47 -0500)
author Tom Lane <tgl@sss.pgh.pa.us>
Thu, 27 Jan 2011 22:45:55 +0000 (17:45 -0500)
committer Tom Lane <tgl@sss.pgh.pa.us>
Thu, 27 Jan 2011 22:47:32 +0000 (17:47 -0500)
diff --git a/doc/src/sgml/release-8.2.sgml b/doc/src/sgml/release-8.2.sgml

index dd82ee69d3a43386b37df9f000e475dba88bee16..2dd49d6a063e9bbdb68c74f4033e88d14b09c578 100644 (file)
--- a/doc/src/sgml/release-8.2.sgml
+++ b/doc/src/sgml/release-8.2.sgml
@@ -100,6 +100,19 @@
       </para>
      </listitem>
  
+    <listitem>
+     <para>
+      Fix buffer overrun in <filename>contrib/intarray</>'s input function
+      for the <type>query_int</> type (Apple)
+     </para>
+
+     <para>
+      This bug is a security risk since the function's return address could
+      be overwritten.  Thanks to Apple Inc's security team for reporting this
+      issue and supplying the fix.  (CVE-2010-4015)
+     </para>
+    </listitem>
+
      <listitem>
       <para>
        Fix bug in <filename>contrib/seg</>'s GiST picksplit algorithm
author	Tom Lane <tgl@sss.pgh.pa.us>
	Thu, 27 Jan 2011 22:45:55 +0000 (17:45 -0500)
committer	Tom Lane <tgl@sss.pgh.pa.us>
	Thu, 27 Jan 2011 22:47:32 +0000 (17:47 -0500)