Last-minute updates for release notes.
Security: CVE-2023-39417, CVE-2023-39418
This commit is contained in:
parent
919ebb023e
commit
023fa8f326
|
@ -30,7 +30,7 @@
|
||||||
|
|
||||||
<para>
|
<para>
|
||||||
However, if you use BRIN indexes, it may be advisable to reindex them;
|
However, if you use BRIN indexes, it may be advisable to reindex them;
|
||||||
see the first changelog entry below.
|
see the second changelog entry below.
|
||||||
</para>
|
</para>
|
||||||
|
|
||||||
<para>
|
<para>
|
||||||
|
@ -46,6 +46,35 @@
|
||||||
|
|
||||||
<listitem>
|
<listitem>
|
||||||
<!--
|
<!--
|
||||||
|
Author: Noah Misch <noah@leadboat.com>
|
||||||
|
Branch: master [cd5f2a357] 2023-08-07 06:05:56 -0700
|
||||||
|
Branch: REL_16_STABLE [f53511010] 2023-08-07 06:05:59 -0700
|
||||||
|
Branch: REL_15_STABLE [de494ec14] 2023-08-07 06:06:00 -0700
|
||||||
|
Branch: REL_14_STABLE [d4648a74b] 2023-08-07 06:06:00 -0700
|
||||||
|
Branch: REL_13_STABLE [b1b585e0f] 2023-08-07 06:06:00 -0700
|
||||||
|
Branch: REL_12_STABLE [eb044d8f0] 2023-08-07 06:06:00 -0700
|
||||||
|
Branch: REL_11_STABLE [919ebb023] 2023-08-07 06:06:01 -0700
|
||||||
|
-->
|
||||||
|
<para>
|
||||||
|
Disallow substituting a schema or owner name into an extension script
|
||||||
|
if the name contains a quote, backslash, or dollar sign (Noah Misch)
|
||||||
|
</para>
|
||||||
|
|
||||||
|
<para>
|
||||||
|
This restriction guards against SQL-injection hazards for trusted
|
||||||
|
extensions.
|
||||||
|
</para>
|
||||||
|
|
||||||
|
<para>
|
||||||
|
The <productname>PostgreSQL</productname> Project thanks Micah Gate,
|
||||||
|
Valerie Woolard, Tim Carey-Smith, and Christoph Berg for reporting
|
||||||
|
this problem.
|
||||||
|
(CVE-2023-39417)
|
||||||
|
</para>
|
||||||
|
</listitem>
|
||||||
|
|
||||||
|
<listitem>
|
||||||
|
<!--
|
||||||
Author: Tomas Vondra <tomas.vondra@postgresql.org>
|
Author: Tomas Vondra <tomas.vondra@postgresql.org>
|
||||||
Branch: master Release: REL_16_BR [3581cbdcd] 2023-05-19 01:29:44 +0200
|
Branch: master Release: REL_16_BR [3581cbdcd] 2023-05-19 01:29:44 +0200
|
||||||
Branch: REL_15_STABLE [e18769323] 2023-05-19 00:15:13 +0200
|
Branch: REL_15_STABLE [e18769323] 2023-05-19 00:15:13 +0200
|
||||||
|
|
Loading…
Reference in New Issue