rdelaage
/
postgresql
mirror of https://git.postgresql.org/git/postgresql.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
postgresql/src/backend
History
Tom Lane ae20b23a9e Refactor permissions checks for large objects. 
Up to now, ACL checks for large objects happened at the level of
the SQL-callable functions, which led to CVE-2017-7548 because of a
missing check.  Push them down to be enforced in inv_api.c as much
as possible, in hopes of preventing future bugs.  This does have the
effect of moving read and write permission errors to happen at lo_open
time not loread or lowrite time, but that seems acceptable.

Michael Paquier and Tom Lane

Discussion: https://postgr.es/m/CAB7nPqRHmNOYbETnc_2EjsuzSM00Z+BWKv9sy6tnvSd5gWT_JA@mail.gmail.com
 		2017-11-09 12:56:07 -05:00
..
access Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
bootstrap Exclude flex-generated code from coverage testing 2017-10-16 16:28:11 -04:00
catalog Refactor permissions checks for large objects. 2017-11-09 12:56:07 -05:00
commands Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
executor Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
foreign Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
lib Allow to avoid NUL-byte management for stringinfos and use in format.c. 2017-10-11 16:01:52 -07:00
libpq Refactor permissions checks for large objects. 2017-11-09 12:56:07 -05:00
main Change pg_ctl to detect server-ready by watching status in postmaster.pid. 2017-06-28 17:31:32 -04:00
nodes Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
optimizer Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
parser Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
po Translation updates 2017-08-07 13:55:34 -04:00
port Fix incorrect use of bool 2017-11-04 12:00:58 -04:00
postmaster Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
regex Mop-up for commit 85feb77aa0. 2017-09-22 11:35:12 -04:00
replication Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
rewrite Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
snowball Initial pgindent run with pg_bsd_indent version 2.0. 2017-06-21 14:39:04 -04:00
statistics Infer functional dependency past RelabelType 2017-10-12 17:23:47 +02:00
storage Refactor permissions checks for large objects. 2017-11-09 12:56:07 -05:00
tcop Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
tsearch Change TRUE/FALSE to true/false 2017-11-08 11:37:28 -05:00
utils Refactor permissions checks for large objects. 2017-11-09 12:56:07 -05:00
.gitignore Add .gitignore entries for AIX-specific intermediate build artifacts. 2015-07-08 20:44:22 -04:00
Makefile Inject $(ICU_LIBS) regardless of platform. 2017-08-20 21:22:18 -07:00
common.mk Add ICU_CFLAGS to global CPPFLAGS 2017-06-12 15:57:22 -04:00
nls.mk Translation updates 2017-05-15 12:19:54 -04:00