From: Tom Lane Date: Mon, 5 Aug 2019 15:49:14 +0000 (-0400) Subject: Last-minute updates for release notes. X-Git-Tag: REL9_5_19~1 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=e3d8c9a5f1014be97150d07b3e5af1d32a45df65;p=thirdparty%2Fpostgresql.git Last-minute updates for release notes. Security: CVE-2019-10208, CVE-2019-10209 --- diff --git a/doc/src/sgml/release-9.5.sgml b/doc/src/sgml/release-9.5.sgml index 238d85bf2e6..1f027ea9571 100644 --- a/doc/src/sgml/release-9.5.sgml +++ b/doc/src/sgml/release-9.5.sgml @@ -35,6 +35,36 @@ + + Require schema qualification to cast to a temporary type when using + functional cast syntax (Noah Misch) + + + + We have long required invocations of temporary functions to + explicitly specify the temporary schema, that + is pg_temp.func_name(args). + Require this as well for casting to temporary types using functional + notation, for + example pg_temp.type_name(arg). + Otherwise it's possible to capture a function call using a temporary + object, allowing privilege escalation in much the same ways that we + blocked in CVE-2007-2138. + (CVE-2019-10208) + + + + +