Skip to content

Commit 0c8215c

Browse files
tglsfdctglsfdc
committed
Last-minute updates for release notes.
Security: CVE-2022-1552
1 parent 91a3a74 commit 0c8215c

File tree

1 file changed

+60
-23
lines changed

1 file changed

+60
-23
lines changed

doc/src/sgml/release-13.sgml

Lines changed: 60 additions & 23 deletions
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@
2626
However, if you have any GiST indexes on columns of type
2727
<type>ltree</type> (supplied by the <filename>contrib/ltree</filename>
2828
extension), you should re-index them after updating.
29-
See the first changelog entry below.
29+
See the second changelog entry below.
3030
</para>
3131

3232
<para>
@@ -42,6 +42,49 @@
4242

4343
<listitem>
4444
<!--
45+
Author: Noah Misch <noah@leadboat.com>
46+
Branch: master [a117cebd6] 2022-05-09 08:35:08 -0700
47+
Branch: REL_14_STABLE [ab49ce7c3] 2022-05-09 08:35:12 -0700
48+
Branch: REL_13_STABLE [35edcc0ce] 2022-05-09 08:35:12 -0700
49+
Branch: REL_12_STABLE [7f098f7b5] 2022-05-09 08:35:12 -0700
50+
Branch: REL_11_STABLE [48ca2904c] 2022-05-09 08:35:13 -0700
51+
Branch: REL_10_STABLE [ef792f785] 2022-05-09 08:35:13 -0700
52+
Author: Noah Misch <noah@leadboat.com>
53+
Branch: master [0abc1a059] 2022-05-09 08:35:08 -0700
54+
Branch: REL_14_STABLE [677a49478] 2022-05-09 08:35:12 -0700
55+
Branch: REL_13_STABLE [88743d581] 2022-05-09 08:35:12 -0700
56+
Branch: REL_12_STABLE [880511cb0] 2022-05-09 08:35:12 -0700
57+
Branch: REL_11_STABLE [34ff15660] 2022-05-09 08:35:13 -0700
58+
Branch: REL_10_STABLE [f26d57028] 2022-05-09 08:35:13 -0700
59+
-->
60+
<para>
61+
Confine additional operations within <quote>security restricted
62+
operation</quote> sandboxes (Sergey Shinderuk, Noah Misch)
63+
</para>
64+
65+
<para>
66+
Autovacuum, <command>CLUSTER</command>, <command>CREATE
67+
INDEX</command>, <command>REINDEX</command>, <command>REFRESH
68+
MATERIALIZED VIEW</command>,
69+
and <application>pg_amcheck</application> activated
70+
the <quote>security restricted operation</quote> protection
71+
mechanism too late, or even not at all in some code paths.
72+
A user having permission to create non-temporary objects within a
73+
database could define an object that would execute arbitrary SQL
74+
code with superuser permissions the next time that autovacuum
75+
processed the object, or that some superuser ran one of the affected
76+
commands against it.
77+
</para>
78+
79+
<para>
80+
The <productname>PostgreSQL</productname> Project thanks
81+
Alexander Lakhin for reporting this problem.
82+
(CVE-2022-1552)
83+
</para>
84+
</listitem>
85+
86+
<listitem>
87+
<!--
4588
Author: Alexander Korotkov <akorotkov@postgresql.org>
4689
Branch: master [7e74aafc4] 2022-03-16 11:41:18 +0300
4790
Branch: REL_14_STABLE [7d30f59da] 2022-03-16 11:41:30 +0300
@@ -109,28 +152,6 @@ Branch: REL_10_STABLE [205214c8b] 2022-03-17 18:18:05 -0400
109152
<listitem>
110153
<!--
111154
Author: Tom Lane <tgl@sss.pgh.pa.us>
112-
Branch: master [eafdf9de0] 2022-04-20 18:08:23 -0400
113-
Branch: REL_14_STABLE [e34632947] 2022-04-20 18:08:24 -0400
114-
Branch: REL_13_STABLE [8275ba773] 2022-04-20 18:08:15 -0400
115-
Branch: REL_12_STABLE [33fe55c06] 2022-04-20 18:08:15 -0400
116-
Branch: REL_11_STABLE [e7adbd282] 2022-04-20 18:08:15 -0400
117-
Branch: REL_10_STABLE [a1e4782a0] 2022-04-20 18:08:15 -0400
118-
-->
119-
<para>
120-
Disallow infinite endpoints in the timestamp variants
121-
of <function>generate_series()</function> (Tom Lane)
122-
</para>
123-
124-
<para>
125-
Previously, such a call would run until canceled (or
126-
out-of-disk-space). The numeric variant already threw an error for
127-
an infinite endpoint value, so do likewise for timestamps.
128-
</para>
129-
</listitem>
130-
131-
<listitem>
132-
<!--
133-
Author: Tom Lane <tgl@sss.pgh.pa.us>
134155
Branch: master [068739fb4] 2022-03-18 16:01:42 -0400
135156
Branch: REL_14_STABLE [ae8ec7feb] 2022-03-18 16:01:42 -0400
136157
Branch: REL_13_STABLE [88ae77588] 2022-03-18 16:01:42 -0400
@@ -153,6 +174,22 @@ Branch: REL_10_STABLE [e6fd4a3da] 2022-03-18 16:01:42 -0400
153174
<listitem>
154175
<!--
155176
Author: Tom Lane <tgl@sss.pgh.pa.us>
177+
Branch: master [fe20afaee] 2022-05-09 14:15:37 -0400
178+
Branch: REL_14_STABLE [ab2f78392] 2022-05-09 14:15:37 -0400
179+
Branch: REL_13_STABLE [91a3a74c6] 2022-05-09 14:15:37 -0400
180+
Branch: REL_12_STABLE [90e52884e] 2022-05-09 14:15:37 -0400
181+
Branch: REL_11_STABLE [539f8c563] 2022-05-09 14:15:37 -0400
182+
Branch: REL_10_STABLE [4eabaffca] 2022-05-09 14:15:37 -0400
183+
-->
184+
<para>
185+
Avoid core dump in parser for a <literal>VALUES</literal> clause with
186+
zero columns (Tom Lane)
187+
</para>
188+
</listitem>
189+
190+
<listitem>
191+
<!--
192+
Author: Tom Lane <tgl@sss.pgh.pa.us>
156193
Branch: master [2591ee8ec] 2022-03-21 17:44:29 -0400
157194
Branch: REL_14_STABLE [48b6035f0] 2022-03-21 17:44:29 -0400
158195
Branch: REL_13_STABLE [dfefe38fb] 2022-03-21 17:44:29 -0400

0 commit comments

Comments
 (0)