summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTom Lane2024-08-05 18:03:20 +0000
committerTom Lane2024-08-05 18:03:20 +0000
commitb942cc42b7c659da70c205151bde5e1f9af2ece0 (patch)
treea72048987b62cd3d014c0f7138d6dca41ce4a8d7
parent72ef1675e2bc502b31854b1c31ccf22fde7cde47 (diff)
Last-minute updates for release notes.
Security: CVE-2024-7348
-rw-r--r--doc/src/sgml/release-14.sgml39
1 files changed, 39 insertions, 0 deletions
diff --git a/doc/src/sgml/release-14.sgml b/doc/src/sgml/release-14.sgml
index ac768388734..a535409aa7d 100644
--- a/doc/src/sgml/release-14.sgml
+++ b/doc/src/sgml/release-14.sgml
@@ -35,6 +35,45 @@
<listitem>
<!--
+Author: Masahiko Sawada <msawada@postgresql.org>
+Branch: master [66e94448a] 2024-08-05 06:05:33 -0700
+Branch: REL_17_STABLE [fdf218f1d] 2024-08-05 06:05:30 -0700
+Branch: REL_16_STABLE [6aba85a4b] 2024-08-05 06:05:28 -0700
+Branch: REL_15_STABLE [e81e53a0c] 2024-08-05 06:05:25 -0700
+Branch: REL_14_STABLE [72ef1675e] 2024-08-05 06:05:23 -0700
+Branch: REL_13_STABLE [bbc94abf6] 2024-08-05 06:05:20 -0700
+Branch: REL_12_STABLE [79c7a7e29] 2024-08-05 06:05:17 -0700
+-->
+ <para>
+ Prevent unauthorized code execution
+ during <application>pg_dump</application> (Masahiko Sawada)
+ </para>
+
+ <para>
+ An attacker able to create and drop non-temporary objects could
+ inject SQL code that would be executed by a
+ concurrent <application>pg_dump</application> session with the
+ privileges of the role running <application>pg_dump</application>
+ (which is often a superuser). The attack involves replacing a
+ sequence or similar object with a view or foreign table that will
+ execute malicious code. To prevent this, introduce a new server
+ parameter <varname>restrict_nonsystem_relation_kind</varname> that
+ can disable expansion of non-builtin views as well as access to
+ foreign tables, and teach <application>pg_dump</application> to set
+ it when available. Note that the attack is prevented only if
+ both <application>pg_dump</application> and the server it is dumping
+ from are new enough to have this fix.
+ </para>
+
+ <para>
+ The <productname>PostgreSQL</productname> Project thanks
+ Noah Misch for reporting this problem.
+ (CVE-2024-7348)
+ </para>
+ </listitem>
+
+ <listitem>
+<!--
Author: Melanie Plageman <melanieplageman@gmail.com>
Branch: master [83c39a1f7] 2024-07-19 12:04:00 -0400
Branch: REL_17_STABLE [fd4f12df5] 2024-07-19 12:12:03 -0400