diff options
author | Tom Lane | 2017-11-06 17:02:30 +0000 |
---|---|---|
committer | Tom Lane | 2017-11-06 17:02:30 +0000 |
commit | 203b965f275061894621a5a359213ac77558d33f (patch) | |
tree | 86cf2964c38826ba1e28bbd835a505e3b52d97ec | |
parent | eda780281c9c09599d12e783c51905078674b2e8 (diff) |
Last-minute updates for release notes.
Security: CVE-2017-12172, CVE-2017-15098, CVE-2017-15099
-rw-r--r-- | doc/src/sgml/release-9.2.sgml | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/doc/src/sgml/release-9.2.sgml b/doc/src/sgml/release-9.2.sgml index f0283ad500..e1bfb2e2b2 100644 --- a/doc/src/sgml/release-9.2.sgml +++ b/doc/src/sgml/release-9.2.sgml @@ -42,6 +42,31 @@ <listitem> <para> + Fix sample server-start scripts to become <literal>$PGUSER</literal> + before opening <literal>$PGLOG</literal> (Noah Misch) + </para> + + <para> + Previously, the postmaster log file was opened while still running as + root. The database owner could therefore mount an attack against + another system user by making <literal>$PGLOG</literal> be a symbolic + link to some other file, which would then become corrupted by appending + log messages. + </para> + + <para> + By default, these scripts are not installed anywhere. Users who have + made use of them will need to manually recopy them, or apply the same + changes to their modified versions. If the + existing <literal>$PGLOG</literal> file is root-owned, it will need to + be removed or renamed out of the way before restarting the server with + the corrected script. + (CVE-2017-12172) + </para> + </listitem> + + <listitem> + <para> Properly reject attempts to convert infinite float values to type <type>numeric</type> (Tom Lane, KaiGai Kohei) </para> |