]> git.ipfire.org Git - thirdparty/postgresql.git/commit
projects / thirdparty / postgresql.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c2e44c3) | patch
Check CREATE privilege on multirange type schema in CREATE TYPE.
authorNathan Bossart <nathan@postgresql.org>
Mon, 11 May 2026 12:13:47 +0000 (05:13 -0700)
committerNoah Misch <noah@leadboat.com>
Mon, 11 May 2026 12:13:47 +0000 (05:13 -0700)
commita44780f412515f70c3f155db04df13af67cea74c
treeee96f6d36bd82fb9adfa40e7874b491a00d8e04dtree | snapshot
parentc2e44c370edc003367e94bde137c6d9cfab5919ccommit | diff
Check CREATE privilege on multirange type schema in CREATE TYPE.

This omission allowed roles to create multirange types in any
schema, potentially leading to privilege escalations.  Note that
when a multirange type name is not specified in CREATE TYPE, it is
automatically placed in the range type's schema, which is checked
at the beginning of DefineRange().

Reported-by: Jelte Fennema-Nio <postgres@jeltef.nl>
Author: Jelte Fennema-Nio <postgres@jeltef.nl>
Reviewed-by: Nathan Bossart <nathandbossart@gmail.com>
Reviewed-by: Tomas Vondra <tomas@vondra.me>
Security: CVE-2026-6472
Backpatch-through: 14
src/backend/commands/typecmds.c diff | blob | blame | history
src/test/regress/expected/multirangetypes.out diff | blob | blame | history
src/test/regress/sql/multirangetypes.sql diff | blob | blame | history
Mirror of https://git.postgresql.org/git/postgresql.git