diff options
| author | Tom Lane <tgl@sss.pgh.pa.us> | 2007-04-20 02:38:46 +0000 |
|---|---|---|
| committer | Tom Lane <tgl@sss.pgh.pa.us> | 2007-04-20 02:38:46 +0000 |
| commit | eaabaa7e045874b8b5ec158368e2b5403f5fc69c (patch) | |
| tree | 66c525d35edca65e57aed83435bab25e36dd680f /src/tutorial/funcs.c | |
| parent | b8f0a51a495875f88bd051974daa6aaa42c0e3c7 (diff) | |
| download | postgresql-eaabaa7e045874b8b5ec158368e2b5403f5fc69c.tar.gz postgresql-eaabaa7e045874b8b5ec158368e2b5403f5fc69c.zip | |
Support explicit placement of the temporary-table schema within search_path.
This is needed to allow a security-definer function to set a truly secure
value of search_path. Without it, a malicious user can use temporary objects
to execute code with the privileges of the security-definer function. Even
pushing the temp schema to the back of the search path is not quite good
enough, because a function or operator at the back of the path might still
capture control from one nearer the front due to having a more exact datatype
match. Hence, disable searching the temp schema altogether for functions and
operators.
Security: CVE-2007-2138
Diffstat (limited to 'src/tutorial/funcs.c')
0 files changed, 0 insertions, 0 deletions