Home > mailing lists

Potential vuln in example for "F.25.1.1. digest()" - Mailing list pgsql-docs

From	PG Doc comments form
Subject	Potential vuln in example for "F.25.1.1. digest()"
Date	August 17, 2021 19:11:53
Msg-id	162921671324.1653.2466671901617491685@wrigleys.postgresql.org Whole thread Raw
Responses	Re: Potential vuln in example for "F.25.1.1. digest()" ("David G. Johnston" <david.g.johnston@gmail.com>)
List	pgsql-docs

Tree view

The following documentation comment has been logged on the website:

Page: https://www.postgresql.org/docs/13/pgcrypto.html
Description:

Hi,
in "F.25.1.1. digest()" you suggest:

CREATE OR REPLACE FUNCTION sha1(bytea) returns text AS $$
    SELECT encode(digest($1, 'sha1'), 'hex')
$$ LANGUAGE SQL STRICT IMMUTABLE;

While this is a great example, it may expose a database app to
vulnerabilities if the attacker succeeds in overriding the function
sha1(...) in the app's user context (schema). This may or may not require
administrative privileges.
Explicitly putting it into the "postgres" schema and calling it using
"postgres.sha1(...)" could mitigate the risk in such a way that
administrative privileges are required.

Do you have an even better solution to secure it?

:-) Beat

pgsql-docs by date:

From: "David G. Johnston"
Date: 10 August 2021, 06:40:20
Subject: Re: incorrect information in documentation

From: "David G. Johnston"
Date: 17 August 2021, 21:06:34
Subject: Re: Potential vuln in example for "F.25.1.1. digest()"

Potential vuln in example for "F.25.1.1. digest()" - Mailing list pgsql-docs

Previous

Next