The following documentation comment has been logged on the website: Page: https://www.postgresql.org/docs/18/release-18-4.html Description:
The 18.4 release notes say this: "Use timing-safe string comparisons in authentication code (Michael Paquier) Use timingsafe_bcmp() instead of memcpy() or strcmp() when checking passwords, ..." I think that should be memcmp() instead of memcpy().
