Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to content

Commit da21a3a

Browse files
tglsfdctglsfdc
committed
Last-minute updates for release notes.
Security: CVE-2024-0985 (not CVE-2023-5869 as claimed in prior commit msg)
1 parent 246d16e commit da21a3a

File tree

1 file changed

+44
-0
lines changed

1 file changed

+44
-0
lines changed

doc/src/sgml/release-16.sgml

Lines changed: 44 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -41,6 +41,50 @@
4141

4242
<listitem>
4343
<!--
44+
Author: Heikki Linnakangas <heikki.linnakangas@iki.fi>
45+
Branch: master [5a9167c39] 2024-02-05 11:01:23 +0200
46+
Branch: REL_16_STABLE [d6a61cb3b] 2024-02-05 11:02:56 +0200
47+
Branch: REL_15_STABLE [f2fdea198] 2024-02-05 11:03:26 +0200
48+
Branch: REL_14_STABLE [f4f288352] 2024-02-05 11:03:43 +0200
49+
Branch: REL_13_STABLE [d541ce3b6] 2024-02-05 11:04:08 +0200
50+
Branch: REL_12_STABLE [2699fc035] 2024-02-05 11:04:22 +0200
51+
Branch: master [b96115acb] 2024-02-05 11:01:30 +0200
52+
Branch: REL_16_STABLE [fb3836855] 2024-02-05 11:03:03 +0200
53+
Branch: REL_15_STABLE [06f36bc01] 2024-02-05 11:03:28 +0200
54+
Branch: REL_14_STABLE [a45c950ae] 2024-02-05 11:03:43 +0200
55+
Branch: REL_13_STABLE [b73d21648] 2024-02-05 11:04:10 +0200
56+
Branch: REL_12_STABLE [add8bc9b8] 2024-02-05 11:04:23 +0200
57+
-->
58+
<para>
59+
Tighten security restrictions within <command>REFRESH MATERIALIZED
60+
VIEW CONCURRENTLY</command> (Heikki Linnakangas)
61+
</para>
62+
63+
<para>
64+
One step of a concurrent refresh command was run under weak security
65+
restrictions. If a materialized view's owner could persuade a
66+
superuser or other high-privileged user to perform a concurrent
67+
refresh on that view, the view's owner could control code executed
68+
with the privileges of the user running <command>REFRESH</command>.
69+
Fix things so that all user-determined code is run as the view's
70+
owner, as expected.
71+
</para>
72+
73+
<para>
74+
The only known exploit for this error does not work
75+
in <productname>PostgreSQL</productname> 16.0 and later, so it may
76+
be that v16 is not vulnerable in practice.
77+
</para>
78+
79+
<para>
80+
The <productname>PostgreSQL</productname> Project thanks Pedro
81+
Gallegos for reporting this problem.
82+
(CVE-2024-0985) <!-- not CVE-2023-5869 as claimed in commit msg -->
83+
</para>
84+
</listitem>
85+
86+
<listitem>
87+
<!--
4488
Author: Daniel Gustafsson <dgustafsson@postgresql.org>
4589
Branch: master [9dce22033] 2023-09-27 13:02:21 +0200
4690
Branch: REL_16_STABLE [2cf50585e] 2023-11-17 10:18:38 +0100

0 commit comments

Comments
 (0)