It was discovered that the PostgreSQL database performs insufficient type checking for SQL function arguments, which might lead to denial of service or information disclosure.

This story continues at http://www.databasejournal.com/news/article.php/3660511