Quick Links

pgsql: Force certain "pljava" custom GUCs to be PGC_SUSET.

From:	Noah Misch <noah(at)leadboat(dot)com>
To:	pgsql-committers(at)postgresql(dot)org
Subject:	pgsql: Force certain "pljava" custom GUCs to be PGC_SUSET.
Date:	2016-02-06 01:26:40
Message-ID:	E1aRre4-0004kB-VR@gemulon.postgresql.org
Views:	Raw Message \| Whole Thread \| Download mbox \| Resend email
Thread:
Lists:	pgsql-committers

Force certain "pljava" custom GUCs to be PGC_SUSET.

Future PL/Java versions will close CVE-2016-0766 by making these GUCs
PGC_SUSET. This PostgreSQL change independently mitigates that PL/Java
vulnerability, helping sites that update PostgreSQL more frequently than
PL/Java. Back-patch to 9.1 (all supported versions).

Branch
------
REL9_2_STABLE

Details
-------
http://git.postgresql.org/pg/commitdiff/de9766d39d91f0069fc95bfaac0caed8546f8ccc

Modified Files
--------------
src/backend/utils/misc/guc.c | 11 +++++++++++
1 file changed, 11 insertions(+)

Browse pgsql-committers by date

	From	Date	Subject
Next Message	Tom Lane	2016-02-06 04:09:25	Re: pgsql: Add gin_clean_pending_list function to clean up GIN pending list
Previous Message	Tom Lane	2016-02-05 22:06:30	pgsql: First-draft release notes for 9.4.6.