Quick Links

Re: Advisory on possibly insecure security definer functions

From:	Peter Eisentraut <peter_e(at)gmx(dot)net>
To:	"Merlin Moncure" <mmoncure(at)gmail(dot)com>
Cc:	pgsql-general(at)postgresql(dot)org
Subject:	Re: Advisory on possibly insecure security definer functions
Date:	2007-02-14 16:28:26
Message-ID:	200702141728.27398.peter_e@gmx.net
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-announce pgsql-general

Am Mittwoch, 14. Februar 2007 16:31 schrieb Merlin Moncure:
> Could you clarify what functions are going to get an explicit 'set
> search_path'? Will this change the behavior of any userland
> functions?

Nothing is going to "get" anything. You have to fix all affected functions
yourself.

--
Peter Eisentraut
http://developer.postgresql.org/~petere/

In response to

Re: Advisory on possibly insecure security definer functions at 2007-02-14 15:31:10 from Merlin Moncure

Browse pgsql-announce by date

	From	Date	Subject
Next Message	Jean-Paul Argudo	2007-02-15 17:14:18	French National Geographical Institute choosed PostgreSQL/PostGIS
Previous Message	Merlin Moncure	2007-02-14 15:31:10	Re: Advisory on possibly insecure security definer functions

Browse pgsql-general by date

	From	Date	Subject
Next Message	Andrus	2007-02-14 16:38:40	Adding audit trail fields and triggers to all tables
Previous Message	Tom Lane	2007-02-14 16:00:06	Re: suggestions on improving a query