Impact
It appears suspicious that such binding may be used occasionally with any purpose except crashing server. On the other hand any non-privileged user with minimum access to server may type
SET BIND OF VARCHAR(252) TO CHAR(1024) CHARACTER SET WIN1251 --(critical is big length of CHAR type)
that will cause server die immediately due to stack corruption.
Patches
Fixed snapshots are available at https://firebirdsql.org/en/snapshot-builds/ .
Workarounds
No - upgrade is required.
Impact
It appears suspicious that such binding may be used occasionally with any purpose except crashing server. On the other hand any non-privileged user with minimum access to server may type
SET BIND OF VARCHAR(252) TO CHAR(1024) CHARACTER SET WIN1251 --(critical is big length of CHAR type)
that will cause server die immediately due to stack corruption.
Patches
Fixed snapshots are available at https://firebirdsql.org/en/snapshot-builds/ .
Workarounds
No - upgrade is required.