| From: | Jeff Davis <pgsql(at)j-davis(dot)com> |
|---|---|
| To: | Noah Misch <noah(at)leadboat(dot)com> |
| Cc: | Michael Paquier <michael(at)paquier(dot)xyz>, Nathan Bossart <nathandbossart(at)gmail(dot)com>, pgsql-hackers(at)postgresql(dot)org, Joe Conway <mail(at)joeconway(dot)com>, Robert Haas <robertmhaas(at)gmail(dot)com> |
| Subject: | Re: MAINTAIN privilege -- what do we need to un-revert it? |
| Date: | 2024-07-12 23:50:17 |
| Message-ID: | 8e0438821bddd4de198989e6ac0f9a2aa27cabeb.camel@j-davis.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
On Fri, 2024-07-12 at 16:11 -0700, Noah Misch wrote:
> Since refresh->relation is a RangeVar, this departs from the standard
> against
> repeated name lookups, from CVE-2014-0062 (commit 5f17304).
Interesting, thank you.
I did a rough refactor and attached v3. Aside from cleanup issues, is
this what you had in mind?
Regards,
Jeff Davis
| Attachment | Content-Type | Size |
|---|---|---|
| v3-0001-Add-missing-RestrictSearchPath-calls.patch | text/x-patch | 1.5 KB |
| v3-0002-For-materialized-views-use-REFRESH-to-load-data-d.patch | text/x-patch | 7.7 KB |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Thomas Munro | 2024-07-13 04:22:12 | Re: Why is citext/regress failing on hamerkop? |
| Previous Message | Noah Misch | 2024-07-12 23:11:49 | Re: MAINTAIN privilege -- what do we need to un-revert it? |