Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Abandon the use of Perl's Safe.pm to enforce restrictions in plperl, as it is
fundamentally insecure. Instead apply an opmask to the whole interpreter that
imposes restrictions on unsafe operations. These restrictions are much harder
to subvert than is Safe.pm, since there
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL8_4_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.12.5 -> r1.1.12.6)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/do
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL8_2_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.4.6 -> r1.1.4.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.6 -> r1.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/release-7.4.sgml?r1=1.6&r
Log Message:
---
Prevent PL/Tcl from loading the "unknown" module from pltcl_modules unless
that is a regular table or view owned by a superuser. This prevents a
trojan horse attack whereby any unprivileged SQL user could create such a
table and insert code into it that would then get exec
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL8_3_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.2.6 -> r1.1.2.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL8_0_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.8.6 -> r1.1.8.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL7_4_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.10.6 -> r1.1.10.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/do
Log Message:
---
Update release notes with security issues.
Security: CVE-2010-1169, CVE-2010-1170
Tags:
REL8_1_STABLE
Modified Files:
--
pgsql/doc/src/sgml:
release-7.4.sgml (r1.1.6.6 -> r1.1.6.7)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/
Log Message:
---
Fix MSVC builds for recent plperl changes. Go back to version 8.2, which is
where we started supporting MSVC builds.
Security: CVE-2010-1169
Tags:
REL8_4_STABLE
Modified Files:
--
pgsql/src/tools/msvc:
Mkvcbuild.pm (r1.40 -> r1.40.2.1)
Log Message:
---
Fix MSVC builds for recent plperl changes. Go back to version 8.2, which is
where we started supporting MSVC builds.
Security: CVE-2010-1169
Tags:
REL8_3_STABLE
Modified Files:
--
pgsql/src/tools/msvc:
Mkvcbuild.pm (r1.25.2.4 -> r1.25.2.5)
Log Message:
---
Fix MSVC builds for recent plperl changes. Go back to version 8.2, which is
where we started supporting MSVC builds.
Security: CVE-2010-1169
Tags:
REL8_2_STABLE
Modified Files:
--
pgsql/src/tools/msvc:
mkvcbuild.pl (r1.8.2.1 -> r1.8.2.2)
Log Message:
---
Fix MSVC builds for recent plperl changes. Go back to version 8.2, which is
where we started supporting MSVC builds.
Security: CVE-2010-1169
Modified Files:
--
pgsql/src/tools/msvc:
Mkvcbuild.pm (r1.56 -> r1.57)
(http://anoncvs.postgresql.
Log Message:
---
Clarify plperl subroutine name release notes item, remove now redundant Safe.pm
item.
Modified Files:
--
pgsql/doc/src/sgml:
release-9.0.sgml (r2.21 -> r2.22)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/release-9.0.sgml?r1
Log Message:
---
Follow up a visit from the style police.
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.175 -> r1.176)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.175&r2=1.176)
--
Sent via pgsql-committers mailing li
[email protected] (Andrew Dunstan) writes:
> Log Message:
> ---
> Follow up a visit from the style police.
I think this needs to be back-patched, too.
regards, tom lane
--
Sent via pgsql-committers mailing list ([email protected])
To make chan
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL7_4_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.40.2.4 -> r1.40.2.5)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.40.2.4&r2=1.40.2.5)
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL8_0_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.67.4.12 -> r1.67.4.13)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.67.4.12&r2=1.67.4.1
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL8_2_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.123.2.13 -> r1.123.2.14)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.123.2.13&r2=1.123
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL8_3_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.136.2.9 -> r1.136.2.10)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.136.2.9&r2=1.136.2
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL8_1_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.94.2.16 -> r1.94.2.17)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.94.2.16&r2=1.94.2.1
Log Message:
---
> Follow up a visit from the style police.
Tags:
REL8_4_STABLE
Modified Files:
--
pgsql/src/pl/plperl:
plperl.c (r1.150.2.7 -> r1.150.2.8)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/plperl.c?r1=1.150.2.7&r2=1.150.2.
Tom Lane wrote:
[email protected] (Andrew Dunstan) writes:
Log Message:
---
Follow up a visit from the style police.
I think this needs to be back-patched, too.
Done, although the commit message got slightly mangled, sorry about that.
che
Log Message:
---
Make table in example less wide.
Modified Files:
--
pgsql/doc/src/sgml/ref:
show.sgml (r1.49 -> r1.50)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/doc/src/sgml/ref/show.sgml?r1=1.49&r2=1.50)
--
Sent via pgsql-committers mailing list (
Log Message:
---
support distro subdirs
Modified Files:
--
client-code:
Makefile (r1.1 -> r1.2)
(http://cvs.pgfoundry.org/cgi-bin/cvsweb.cgi/pgbuildfarm/client-code/Makefile?r1=1.1&r2=1.2)
--
Sent via pgsql-committers mailing list (pgsql-committers@postgr
Log Message:
---
Move pg_notify() details to a subsection within the NOTIFY reference page.
This allows the index to reference the pg_notify() subsection specifically,
rather than Notes section of the NOTIFY reference page more generally.
Fujii Masao
Modified Files:
--
pg
Log Message:
---
Add pg_upgrade TESTING files explaining a testing method.
Added Files:
---
pgsql/contrib/pg_upgrade:
TESTING (r1.1)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/contrib/pg_upgrade/TESTING?rev=1.1&content-type=text/x-cvsweb-markup)
--
Sent
Log Message:
---
Fix regression tests to match error message change
Modified Files:
--
pgsql/src/pl/plperl/expected:
plperl_init.out (r1.4 -> r1.5)
(http://anoncvs.postgresql.org/cvsweb.cgi/pgsql/src/pl/plperl/expected/plperl_init.out?r1=1.4&r2=1.5)
--
Se
40 matches
Mail list logo
