Ensure cached plans are correctly marked as dependent on role. - postgresql.git - This is the main PostgreSQL git repository.

diff options

author	Nathan Bossart	2024-11-11 15:00:00 +0000
committer	Nathan Bossart	2024-11-11 15:00:00 +0000
commit	edcda9bb4c4500b75bb4a16c7c59834398ca2906 (patch)
tree	ea5126092918e6ba3f6935d8a8111a56c82038ac /src/include/postgres.h
parent	3ebcfa54db3309651d8f1d3be6451a8449f6c6ec (diff)

Ensure cached plans are correctly marked as dependent on role.

If a CTE, subquery, sublink, security invoker view, or coercion projection references a table with row-level security policies, we neglected to mark the plan as potentially dependent on which role is executing it. This could lead to later executions in the same session returning or hiding rows that should have been hidden or returned instead. Reported-by: Wolfgang Walther Reviewed-by: Noah Misch Security: CVE-2024-10976 Backpatch-through: 12

Diffstat (limited to 'src/include/postgres.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: