database/postgres
database/postgres
1
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2025-04-25 21:42:33 +03:00
Code
postgres/doc/src/sgml/ref
History
Tom Lane 3af35f8d40 Make standard maintenance operations (including VACUUM, ANALYZE, REINDEX, 
and CLUSTER) execute as the table owner rather than the calling user, using
the same privilege-switching mechanism already used for SECURITY DEFINER
functions.  The purpose of this change is to ensure that user-defined
functions used in index definitions cannot acquire the privileges of a
superuser account that is performing routine maintenance.  While a function
used in an index is supposed to be IMMUTABLE and thus not able to do anything
very interesting, there are several easy ways around that restriction; and
even if we could plug them all, there would remain a risk of reading sensitive
information and broadcasting it through a covert channel such as CPU usage.

To prevent bypassing this security measure, execution of SET SESSION
AUTHORIZATION and SET ROLE is now forbidden within a SECURITY DEFINER context.

Thanks to Itagaki Takahiro for reporting this vulnerability.

Security: CVE-2007-6600
2008-01-03 21:23:45 +00:00
..
abort.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
allfiles.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
alter_aggregate.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_conversion.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_database.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_domain.sgml
Fix my oversight in enabling domains-of-domains: ALTER DOMAIN ADD CONSTRAINT
2007-05-11 20:18:21 +00:00
alter_function.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_group.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_index.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_language.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_opclass.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_operator.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_role.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
alter_schema.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_sequence.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_table.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
alter_tablespace.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_trigger.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_type.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
alter_user.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
analyze.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
begin.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
checkpoint.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
close.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
cluster.sgml
Document that CLUSTER breaks MVCC visibility rules.
2007-05-13 16:04:40 +00:00
clusterdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
comment.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
commit_prepared.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
commit.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
copy.sgml
Update docs/error message for CSV quote/escape --- must be ASCII.
2007-04-18 02:29:39 +00:00
create_aggregate.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_cast.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_constraint.sgml
Fixes for CREATE CONSTRAINT manual page.
2006-10-17 12:53:03 +00:00
create_conversion.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_database.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_domain.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_function.sgml
Fix newly-introduced documentation typo.
2007-04-23 16:52:56 +00:00
create_group.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
create_index.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_language.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_opclass.sgml
Remove use of '<' and '>' in SGML, use '&' escapes.
2006-10-16 17:28:03 +00:00
create_operator.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_role.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_rule.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_schema.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_sequence.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_table_as.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
create_table.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_tablespace.sgml
Add text to the VACUUM, REINDEX, DROP TABLESPACE and CREATE TABLESPACE
2006-10-31 01:52:31 +00:00
create_trigger.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
create_type.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
create_user.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
create_view.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
createdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
createlang.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
createuser.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
deallocate.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
declare.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
delete.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_aggregate.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_cast.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_conversion.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_database.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_domain.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_function.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_group.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
drop_index.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_language.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_opclass.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_operator.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_owned.sgml
Make the order of the CASCADE and RESTRICT keywords in the DROP OWNED
2006-09-18 21:19:29 +00:00
drop_role.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_rule.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_schema.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_sequence.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_table.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_tablespace.sgml
Add text to the VACUUM, REINDEX, DROP TABLESPACE and CREATE TABLESPACE
2006-10-31 01:52:31 +00:00
drop_trigger.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
drop_type.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
drop_user.sgml
Fix a bunch of bad grammar in the docs: "<link>, which see for more
2007-05-15 19:43:59 +00:00
drop_view.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
dropdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
droplang.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
dropuser.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
ecpg-ref.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
end.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
execute.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
explain.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
fetch.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
grant.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
initdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
insert.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
ipcclean.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
listen.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
load.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
lock.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
move.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
notify.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
pg_config-ref.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00
pg_controldata.sgml
More clearly document that most PostgreSQL utilities support libpq
2007-02-20 18:11:17 +00:00
pg_ctl-ref.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
pg_dump.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
pg_dumpall.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
pg_resetxlog.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
pg_restore.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
postgres-ref.sgml
Fix erroneous implementation of -s in postmaster.c (the switch doesn't take
2007-01-04 00:58:01 +00:00
postmaster.sgml
Merge postmaster and postgres command into just postgres. postmaster
2006-06-18 15:38:37 +00:00
prepare_transaction.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
prepare.sgml
Documentation for VALUES lists. Joe Conway and Tom Lane
2006-09-18 19:54:01 +00:00
psql-ref.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
reassign_owned.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
reindex.sgml
Add missing reference to pg_shdescription. Greg Mullane
2007-01-05 01:19:04 +00:00
reindexdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
release_savepoint.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
reset.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
revoke.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
rollback_prepared.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
rollback_to.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
rollback.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
savepoint.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
select_into.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
select.sgml
Document the recently-understood hazard that a rollback can release row-level
2006-12-01 20:49:53 +00:00
set_constraints.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
set_role.sgml
Make standard maintenance operations (including VACUUM, ANALYZE, REINDEX,
2008-01-03 21:23:45 +00:00
set_session_auth.sgml
Make standard maintenance operations (including VACUUM, ANALYZE, REINDEX,
2008-01-03 21:23:45 +00:00
set_transaction.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
set.sgml
Update timezone documentation to reflect current reality: instead of
2006-09-22 16:20:00 +00:00
show.sgml
Make standard maintenance operations (including VACUUM, ANALYZE, REINDEX,
2008-01-03 21:23:45 +00:00
start_transaction.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
truncate.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
unlisten.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
update.sgml
Remove emacs info from footer of SGML files.
2006-09-16 00:30:20 +00:00
vacuum.sgml
Document need for periodic REINDEX in VACUUM FULL cases.
2007-01-31 04:13:28 +00:00
vacuumdb.sgml
Fix seriously broken markup for libpq-envars cross-references.
2007-03-26 17:23:45 +00:00
values.sgml
Spellchecking and such
2006-10-23 18:10:32 +00:00