On 04.05.2017 22:16, Tom Lane wrote:
Nikita Glukhov writes:
In gistrescan() IndexScanDesc.xs_hitup is not reset after MemoryContextReset()
of
so->queueCxt in which xs_hitup was allocated, then getNextNearest() tries to
pfree()
dangling xs_hitup, which results in the reuse of this pointer and
Nikita Glukhov writes:
> In gistrescan() IndexScanDesc.xs_hitup is not reset after
> MemoryContextReset() of
> so->queueCxt in which xs_hitup was allocated, then getNextNearest() tries to
> pfree()
> dangling xs_hitup, which results in the reuse of this pointer and the
> subsequent crash.
Righ
