Fix markup.

Security: CVE-2007-2138

1 files changed, 3 insertions, 5 deletions

diff --git a/doc/src/sgml/release.sgml b/doc/src/sgml/release.sgml
index 8f375baf399..74e5b3db7df 100644
--- a/doc/src/sgml/release.sgml
+++ b/doc/src/sgml/release.sgml
@@ -1,5 +1,5 @@
 <!--
-$Header: /cvsroot/pgsql/doc/src/sgml/release.sgml,v 1.235.2.53 2007/04/20 02:38:44 tgl Exp $
+$Header: /cvsroot/pgsql/doc/src/sgml/release.sgml,v 1.235.2.54 2007/04/20 03:28:05 tgl Exp $
 -->
 
 <appendix id="release">
@@ -45,8 +45,7 @@ $Header: /cvsroot/pgsql/doc/src/sgml/release.sgml,v 1.235.2.53 2007/04/20 02:38:
       truly secure value of <varname>search_path</>.  Without it,
       an unprivileged SQL user can use temporary objects to execute code
       with the privileges of the security-definer function (CVE-2007-2138).
-      See <xref linkend="sql-createfunction"
-      endterm="sql-createfunction-title"> for more information.
+      See <command>CREATE FUNCTION</> for more information.
      </para>
      </listitem>
 
@@ -3230,8 +3229,7 @@ DROP SCHEMA information_schema CASCADE;
       truly secure value of <varname>search_path</>.  Without it,
       an unprivileged SQL user can use temporary objects to execute code
       with the privileges of the security-definer function (CVE-2007-2138).
-      See <xref linkend="sql-createfunction"
-      endterm="sql-createfunction-title"> for more information.
+      See <command>CREATE FUNCTION</> for more information.
      </para>
      </listitem>