postgresql

Go to file

Heikki Linnakangas 5a9167c397 Run REFRESH MATERIALIZED VIEW CONCURRENTLY in right security context The internal commands in REFRESH MATERIALIZED VIEW CONCURRENTLY are correctly executed in SECURITY_RESTRICTED_OPERATION mode, except for creating the temporary "diff" table, because you cannot create temporary tables in SRO mode. But creating the temporary "diff" table is a pretty complex CTAS command that selects from another temporary table created earlier in the command. If you can cajole that CTAS command to execute code defined by the table owner, the table owner can run code with the privileges of the user running the REFRESH command. The proof-of-concept reported to the security team relied on CREATE RULE to convert the internally-built temp table to a view. That's not possible since commit `b23cd185fd`, and I was not able to find a different way to turn the SELECT on the temp table into code execution, so as far as I know this is only exploitable in v15 and below. That's a fiddly assumption though, so apply this patch to master and all stable versions. Thanks to Pedro Gallegos for the report. Security: CVE-2023-5869 Reviewed-by: Noah Misch		2024-02-05 11:01:23 +02:00
config	jit: Require at least LLVM 10.	2024-01-25 15:42:34 +13:00
contrib	pgcrypto: Fix check for buffer size	2024-01-30 11:15:46 +01:00
doc	Improve documentation for COPY ... ON_ERROR ...	2024-02-03 01:49:51 +02:00
src	Run REFRESH MATERIALIZED VIEW CONCURRENTLY in right security context	2024-02-05 11:01:23 +02:00
.cirrus.star	Remove duplicate words in docs and code comments.	2023-10-09 09:18:47 +05:30
.cirrus.tasks.yml	ci: Enable injection points in builds	2024-01-23 12:01:18 +09:00
.cirrus.yml	ci: Make compute resources for CI configurable	2023-08-23 15:15:28 -07:00
.dir-locals.el	Make Emacs perl-mode indent more like perltidy.	2019-01-13 11:32:31 -08:00
.editorconfig	Add .editorconfig	2019-12-18 09:13:13 +01:00
.git-blame-ignore-revs	Add previous commit to .git-blame-ignore-revs.	2024-01-13 13:56:46 -05:00
.gitattributes	Replace Gen_dummy_probes.sed with Gen_dummy_probes.pl	2023-11-14 10:27:10 +01:00
.gitignore	Update top-level .gitignore.	2022-12-04 15:23:00 -05:00
COPYRIGHT	Update copyright for 2024	2024-01-03 20:49:05 -05:00
GNUmakefile.in	Stop generating plain-text INSTALL instructions.	2023-12-22 13:32:15 -05:00
HISTORY	Canonicalize some URLs	2020-02-10 20:47:50 +01:00
Makefile	Stop generating plain-text INSTALL instructions.	2023-12-22 13:32:15 -05:00
README	Stop generating plain-text INSTALL instructions.	2023-12-22 13:32:15 -05:00
aclocal.m4	autoconf: Move export_dynamic determination to configure	2022-12-06 18:55:28 -08:00
configure	jit: Require at least LLVM 10.	2024-01-25 15:42:34 +13:00
configure.ac	Add backend support for injection points	2024-01-22 10:15:50 +09:00
meson.build	jit: Require at least LLVM 10.	2024-01-25 15:42:34 +13:00
meson_options.txt	Add backend support for injection points	2024-01-22 10:15:50 +09:00

README

PostgreSQL Database Management System
=====================================

This directory contains the source code distribution of the PostgreSQL
database management system.

PostgreSQL is an advanced object-relational database management system
that supports an extended subset of the SQL standard, including
transactions, foreign keys, subqueries, triggers, user-defined types
and functions.  This distribution also contains C language bindings.

Copyright and license information can be found in the file COPYRIGHT.

General documentation about this version of PostgreSQL can be found at:
https://www.postgresql.org/docs/devel/
In particular, information about building PostgreSQL from the source
code can be found at:
https://www.postgresql.org/docs/devel/installation.html

The latest version of this software, and related software, may be
obtained at https://www.postgresql.org/download/.  For more information
look at our web site located at https://www.postgresql.org/.