From 789711e1487c46fa8ee555235501fcf17ef6f96c Mon Sep 17 00:00:00 2001
From: Bo Peng <pengbo@sraoss.co.jp>
Date: Tue, 13 May 2025 18:06:36 +0900
Subject: [PATCH] Doc: update release note.

---
 doc.ja/src/sgml/release-4.6.sgml | 130 +++++++++++++++++++++++++++----
 doc/src/sgml/release-4.6.sgml    | 122 ++++++++++++++++++++++++++++-
 2 files changed, 233 insertions(+), 19 deletions(-)
diff --git a/doc.ja/src/sgml/release-4.6.sgml b/doc.ja/src/sgml/release-4.6.sgml
index 5d1686167..a34c18d69 100644
--- a/doc.ja/src/sgml/release-4.6.sgml
+++ b/doc.ja/src/sgml/release-4.6.sgml
@@ -1,22 +1,122 @@
 <sect1 id="release-4-6-1">
  <title>ãªãªã¼ã¹ 4.6.1</title>
-  <note>
-   <title>ãªãªã¼ã¹æ¥</title>
-   <simpara>2025-05-15</simpara>
-  </note>
+ <note>
+  <title>ãªãªã¼ã¹æ¥</title>
+  <simpara>2025-05-15</simpara>
+ </note>
 
  <sect2>
-   <title>å¤æ´ç¹</title>
-   <itemizedlist>
-    <listitem>
-     <!--
-     2025-05-02 [32dee13dd]
-     -->
-     <para>
-      è¨­å®ãã¡ã¤ã«ã«ã¡ã¸ã£ã¼ãã¼ã¸ã§ã³ãè¿½å ãã¾ããã (Bo Peng)
-     </para>
-    </listitem>
-   </itemizedlist>
+  <title>æ¦è¦</title>
+  <para>
+   ãã®ãªãªã¼ã¹ã«ã¯ãã»ã­ã¥ãªãã£ä¿®æ­£ãå«ã¾ãã¦ãã¾ãã
+  </para>
+  <para>
+   <productname>Pgpool-II</productname>ã®ã¯ã©ã¤ã¢ã³ãèªè¨¼ã¡ã«ããºã ã«ã¯èªè¨¼ãã¤ãã¹ã®èå¼±æ§ãããã¾ãã
+   æ¬æ¥ã§ããã°èªè¨¼ãå¿è¦ãªå ´åã§ããèªè¨¼å¦çãã¹ã­ããããã¦ãã¾ãå¯è½æ§ãããã¾ãã
+   ãã®èå¼±æ§ãæªç¨ãããã¨ã§ãæ»æèãä»»æã®ã¦ã¼ã¶ã¨ãã¦ã­ã°ã¤ã³ãããã¼ã¿ãã¼ã¹åã®æå ±ãåç§ã»æ¹ãããããããã¼ã¿ãã¼ã¹ãåæ­¢ãããããããã¨ãã§ããå¯è½æ§ãããã¾ãã(CVE-2025-46801)
+  </para>
+  <para>
+   ãªããæ¬èå¼±æ§ã®å½±é¿ãåããã®ã¯ãä¸è¨ã®ãã¿ã¼ã³1ãã3ããããã®æ¡ä»¶ãæºããå ´åã«éããã¾ãã
+  </para>
+  <itemizedlist>
+   <listitem>
+    <para>
+     ãã¿ã¼ã³ 1ï¼æ¬¡ã®æ¡ä»¶ããã¹ã¦æºããå ´åãæ¬èå¼±æ§ã®å½±é¿ãåããå¯è½æ§ãããã¾ãã
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       <filename>pool_hba.conf</filename>ã§<literal>password</literal>èªè¨¼æ¹å¼ãä½¿ç¨ãã¦ãã
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       allow_clear_text_frontend_auth = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pool_passwd</filename>ã«å¯¾è±¡ã¦ã¼ã¶ã®ãã¹ã¯ã¼ããè¨­å®ããã¦ããªã
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pg_hba.conf</filename>ã§<literal>scram-sha-256</literal>ã¾ãã¯<literal>md5</literal>èªè¨¼æ¹å¼ãä½¿ç¨ãã¦ãã
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+
+   <listitem>
+    <para>
+     ãã¿ã¼ã³ 2ï¼æ¬¡ã®æ¡ä»¶ããã¹ã¦æºããå ´åãæ¬èå¼±æ§ã®å½±é¿ãåããå¯è½æ§ãããã¾ãã
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       enable_pool_hba = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pg_hba.conf</filename>ã§<literal>password</literal>ã<literal>pam</literal>ã<literal>ldap</literal>ã®ããããã®èªè¨¼æ¹å¼ãä½¿ç¨ãã¦ãã
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+
+   <listitem>
+    <para>
+     ãã¿ã¼ã³ 3ï¼æ¬¡ã®æ¡ä»¶ããã¹ã¦æºããå ´åãæ¬èå¼±æ§ã®å½±é¿ãåããå¯è½æ§ãããã¾ãã
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       rawã¢ã¼ããä½¿ç¨ãã¦ãã (backend_clustering_mode = 'raw')
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pool_hba.conf</filename>ã§<literal>md5</literal>èªè¨¼æ¹å¼ãä½¿ç¨ãã¦ãã
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       allow_clear_text_frontend_auth = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pool_passwd</filename>ã«å¯¾è±¡ã¦ã¼ã¶ã®ãã¹ã¯ã¼ãããã­ã¹ãã¾ãã¯AESå½¢å¼ã§ç»é²ããã¦ãã
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       <filename>pg_hba.conf</filename>ã§<literal>password</literal>ã<literal>pam</literal>ã<literal>ldap</literal>ã®ããããã®èªè¨¼æ¹å¼ãä½¿ç¨ãã¦ãã
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+  </itemizedlist>
+  <para>
+   ãã®èå¼±æ§ã®å½±é¿ãåããã®ã¯ã<productname>Pgpool-II</productname> 4.0ç³»ããã³4.1ç³»ã®ãã¹ã¦ã®ãã¼ã¸ã§ã³ã4.2.0-4.2.21ã4.3.0-4.3.14ã4.4.0-4.4.11ã4.5.0-4.5.6ã4.6.0ã§ãã
+   <productname>Pgpool-II</productname> 4.6.1ã4.5.7ã4.4.12ã4.3.15ã4.2.22ä»¥éã¸ã®ã¢ããã°ã¬ã¼ããå¼·ããå§ããã¾ãã
+   ãããã§ããªãå ´åã¯ãçºçæ¡ä»¶ãã¿ã¼ã³ã«å½ã¦ã¯ã¾ããªãè¨­å®ã®çµã¿åããã«å¤æ´ãã¦ãã ããã
+  </para>
+ </sect2>
+
+ <sect2>
+  <title>å¤æ´ç¹</title>
+  <itemizedlist>
+   <listitem>
+    <!--
+    2025-05-02 [32dee13dd]
+    -->
+    <para>
+     è¨­å®ãã¡ã¤ã«ã«ã¡ã¸ã£ã¼ãã¼ã¸ã§ã³ãè¿½å ãã¾ããã (Bo Peng)
+    </para>
+   </listitem>
+  </itemizedlist>
  </sect2>
 
  <sect2>
diff --git a/doc/src/sgml/release-4.6.sgml b/doc/src/sgml/release-4.6.sgml
index 22ea4c76a..7767d4f27 100644
--- a/doc/src/sgml/release-4.6.sgml
+++ b/doc/src/sgml/release-4.6.sgml
@@ -1,9 +1,123 @@
 <sect1 id="release-4-6-1">
  <title>Release 4.6.1</title>
-  <note>
-   <title>Release Date</title>
-   <simpara>2025-05-15</simpara>
-  </note>
+ <note>
+  <title>Release Date</title>
+  <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+  <title>Overview</title>
+  <para>
+   This release contains a security fix.
+  </para>
+  <para>
+   An authentication bypass vulnerability exists in the client authentication
+   mechanism of <productname>Pgpool-II</productname>.
+   In <productname>Pgpool-II</productname>, authentication may be bypassed even
+   when it is supposed to be enforced. As a result, an attacker could log in as
+   any user, potentially leading to information disclosure, data tampering, or
+   even a complete shutdown of the database. (CVE-2025-46801)
+  </para>
+  <para>
+   This vulnerability affects systems where the authentication configuration
+   matches one of the following patterns:
+  </para>
+  <itemizedlist>
+   <listitem>
+    <para>
+     Pattern 1: This vulnerability occurs when all of the following conditions are met:
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       The <literal>password</literal> authentication method is used in
+       <filename>pool_hba.conf</filename>
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       allow_clear_text_frontend_auth = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       The user's password is not set in <filename>pool_passwd</filename>
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       The <literal>scram-sha-256</literal> or <literal>md5</literal> authentication
+       method is used in <filename>pg_hba.conf</filename>
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+
+   <listitem>
+    <para>
+     Pattern 2: This vulnerability occurs when all of the following conditions are met:
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       enable_pool_hba = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       One of the following authentication methods is used in pg_hba.conf:
+       <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+
+   <listitem>
+    <para>
+     Pattern 3: This vulnerability occurs when all of the following conditions are met:
+    </para>
+    <itemizedlist>
+     <listitem>
+      <para>
+       Raw mode is used (backend_clustering_mode = 'raw')
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       The <literal>md5</literal> authentication method is used in
+       <filename>pool_hba.conf</filename>
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       allow_clear_text_frontend_auth = off
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       The user's password is registered in <filename>pool_passwd</filename> in plain
+       text or AES format
+      </para>
+     </listitem>
+     <listitem>
+      <para>
+       One of the following authentication methods is used in
+       <filename>pg_hba.conf</filename>:
+       <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+      </para>
+     </listitem>
+    </itemizedlist>
+   </listitem>
+  </itemizedlist>
+  <para>
+   All versions of Pgpool-II 4.0 and 4.1 series, 4.2.0 to 4.2.21, 4.3.0 to 4.3.14,
+   4.4.0 to 4.4.11, 4.5.0 to 4.5.6 and 4.6.0 are affected by this vulnerability.
+   It is strongly recommended to upgrade to <productname>Pgpool-II</productname>
+   4.6.1, 4.5.7, 4.4.12, 4.3.15 and 4.2.22 or later.
+   Alternatively, you can modify your settings so that they do not match any of
+   the vulnerable configuration patterns.
+  </para>
+ </sect2>
 
  <sect2>
   <title>Changes</title>
-- 
2.39.5

