Movatterモバイル変換

[0]ホーム
URL:

Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly

 Sign up
Appearance settings

Commit0c8215c

Browse files
committed
Last-minute updates for release notes.
Security:CVE-2022-1552
1 parent91a3a74 commit0c8215c

File tree

1 file changed

+60
-23
lines changed

1 file changed

+60
-23
lines changed

‎doc/src/sgml/release-13.sgml‎

Lines changed: 60 additions & 23 deletions
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@
2626
However, if you have any GiST indexes on columns of type
2727
<type>ltree</type> (supplied by the <filename>contrib/ltree</filename>
2828
extension), you should re-index them after updating.
29-
See thefirst changelog entry below.
29+
See thesecond changelog entry below.
3030
</para>
3131

3232
<para>
@@ -42,6 +42,49 @@
4242

4343
<listitem>
4444
<!--
45+
Author: Noah Misch <noah@leadboat.com>
46+
Branch: master [a117cebd6] 2022-05-09 08:35:08 -0700
47+
Branch: REL_14_STABLE [ab49ce7c3] 2022-05-09 08:35:12 -0700
48+
Branch: REL_13_STABLE [35edcc0ce] 2022-05-09 08:35:12 -0700
49+
Branch: REL_12_STABLE [7f098f7b5] 2022-05-09 08:35:12 -0700
50+
Branch: REL_11_STABLE [48ca2904c] 2022-05-09 08:35:13 -0700
51+
Branch: REL_10_STABLE [ef792f785] 2022-05-09 08:35:13 -0700
52+
Author: Noah Misch <noah@leadboat.com>
53+
Branch: master [0abc1a059] 2022-05-09 08:35:08 -0700
54+
Branch: REL_14_STABLE [677a49478] 2022-05-09 08:35:12 -0700
55+
Branch: REL_13_STABLE [88743d581] 2022-05-09 08:35:12 -0700
56+
Branch: REL_12_STABLE [880511cb0] 2022-05-09 08:35:12 -0700
57+
Branch: REL_11_STABLE [34ff15660] 2022-05-09 08:35:13 -0700
58+
Branch: REL_10_STABLE [f26d57028] 2022-05-09 08:35:13 -0700
59+
-->
60+
<para>
61+
Confine additional operations within <quote>security restricted
62+
operation</quote> sandboxes (Sergey Shinderuk, Noah Misch)
63+
</para>
64+
65+
<para>
66+
Autovacuum, <command>CLUSTER</command>, <command>CREATE
67+
INDEX</command>, <command>REINDEX</command>, <command>REFRESH
68+
MATERIALIZED VIEW</command>,
69+
and <application>pg_amcheck</application> activated
70+
the <quote>security restricted operation</quote> protection
71+
mechanism too late, or even not at all in some code paths.
72+
A user having permission to create non-temporary objects within a
73+
database could define an object that would execute arbitrary SQL
74+
code with superuser permissions the next time that autovacuum
75+
processed the object, or that some superuser ran one of the affected
76+
commands against it.
77+
</para>
78+
79+
<para>
80+
The <productname>PostgreSQL</productname> Project thanks
81+
Alexander Lakhin for reporting this problem.
82+
(CVE-2022-1552)
83+
</para>
84+
</listitem>
85+
86+
<listitem>
87+
<!--
4588
Author: Alexander Korotkov <akorotkov@postgresql.org>
4689
Branch: master [7e74aafc4] 2022-03-16 11:41:18 +0300
4790
Branch: REL_14_STABLE [7d30f59da] 2022-03-16 11:41:30 +0300
@@ -109,28 +152,6 @@ Branch: REL_10_STABLE [205214c8b] 2022-03-17 18:18:05 -0400
109152
<listitem>
110153
<!--
111154
Author: Tom Lane <tgl@sss.pgh.pa.us>
112-
Branch: master [eafdf9de0] 2022-04-20 18:08:23 -0400
113-
Branch: REL_14_STABLE [e34632947] 2022-04-20 18:08:24 -0400
114-
Branch: REL_13_STABLE [8275ba773] 2022-04-20 18:08:15 -0400
115-
Branch: REL_12_STABLE [33fe55c06] 2022-04-20 18:08:15 -0400
116-
Branch: REL_11_STABLE [e7adbd282] 2022-04-20 18:08:15 -0400
117-
Branch: REL_10_STABLE [a1e4782a0] 2022-04-20 18:08:15 -0400
118-
-->
119-
<para>
120-
Disallow infinite endpoints in the timestamp variants
121-
of <function>generate_series()</function> (Tom Lane)
122-
</para>
123-
124-
<para>
125-
Previously, such a call would run until canceled (or
126-
out-of-disk-space). The numeric variant already threw an error for
127-
an infinite endpoint value, so do likewise for timestamps.
128-
</para>
129-
</listitem>
130-
131-
<listitem>
132-
<!--
133-
Author: Tom Lane <tgl@sss.pgh.pa.us>
134155
Branch: master [068739fb4] 2022-03-18 16:01:42 -0400
135156
Branch: REL_14_STABLE [ae8ec7feb] 2022-03-18 16:01:42 -0400
136157
Branch: REL_13_STABLE [88ae77588] 2022-03-18 16:01:42 -0400
@@ -153,6 +174,22 @@ Branch: REL_10_STABLE [e6fd4a3da] 2022-03-18 16:01:42 -0400
153174
<listitem>
154175
<!--
155176
Author: Tom Lane <tgl@sss.pgh.pa.us>
177+
Branch: master [fe20afaee] 2022-05-09 14:15:37 -0400
178+
Branch: REL_14_STABLE [ab2f78392] 2022-05-09 14:15:37 -0400
179+
Branch: REL_13_STABLE [91a3a74c6] 2022-05-09 14:15:37 -0400
180+
Branch: REL_12_STABLE [90e52884e] 2022-05-09 14:15:37 -0400
181+
Branch: REL_11_STABLE [539f8c563] 2022-05-09 14:15:37 -0400
182+
Branch: REL_10_STABLE [4eabaffca] 2022-05-09 14:15:37 -0400
183+
-->
184+
<para>
185+
Avoid core dump in parser for a <literal>VALUES</literal> clause with
186+
zero columns (Tom Lane)
187+
</para>
188+
</listitem>
189+
190+
<listitem>
191+
<!--
192+
Author: Tom Lane <tgl@sss.pgh.pa.us>
156193
Branch: master [2591ee8ec] 2022-03-21 17:44:29 -0400
157194
Branch: REL_14_STABLE [48b6035f0] 2022-03-21 17:44:29 -0400
158195
Branch: REL_13_STABLE [dfefe38fb] 2022-03-21 17:44:29 -0400

0 commit comments

Comments
 (0)
[8]ページ先頭
©2009-2025 Movatter.jp