forked frompostgres/postgres
- Notifications
You must be signed in to change notification settings - Fork6
Commit20f01fc
committed
adminpack: Revoke EXECUTE on pg_logfile_rotate()
In 9.6, we moved a number of functions over to using the GRANT system tocontrol access instead of having hard-coded superuser checks.As it turns out, adminpack was creating another function in the catalogfor one of those backend functions where the superuser check wasremoved, specifically pg_rotate_logfile(), but it didn't get the memoabout having to REVOKE EXECUTE on the alternative-name function(pg_logfile_rotate()), meaning that in any installations with adminpackon 9.6 and higher, any user is able to run the pg_logfile_rotate()function, which then calls pg_rotate_logfile() and rotates the logfile.Fix by adding a new version of adminpack (1.1) which handles the REVOKE.As this function should have only been available to the superuser, thisis a security issue, albeit a minor one.Security:CVE-2018-11151 parent83fcc61 commit20f01fc
File tree
3 files changed
+8
-2
lines changed- contrib/adminpack
3 files changed
+8
-2
lines changedLines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
5 | 5 | | |
6 | 6 | | |
7 | 7 | | |
8 | | - | |
| 8 | + | |
9 | 9 | | |
10 | 10 | | |
11 | 11 | | |
| |||
Lines changed: 6 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
| 1 | + | |
| 2 | + | |
| 3 | + | |
| 4 | + | |
| 5 | + | |
| 6 | + | |
Lines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1 | 1 | | |
2 | 2 | | |
3 | | - | |
| 3 | + | |
4 | 4 | | |
5 | 5 | | |
6 | 6 | | |
0 commit comments
Comments
(0)