Home > mailing lists

Re: pgsql: Fix search_path to a safe value during maintenance operations. - Mailing list pgsql-hackers

From	Nathan Bossart
Subject	Re: pgsql: Fix search_path to a safe value during maintenance operations.
Date	June 29, 2023 23:29:40
Msg-id	20230629202940.GA2052174@nathanxps13 Whole thread Raw
In response to	Re: pgsql: Fix search_path to a safe value during maintenance operations. (Robert Haas <robertmhaas@gmail.com>)
List	pgsql-hackers

Tree view

On Thu, Jun 29, 2023 at 11:19:38AM -0400, Robert Haas wrote:
> [ emerges from hibernation ]

Welcome back.

> If we're not going to fix the feature so that it doesn't break the
> security model, we should probably just revert it. I don't understand
> at all the idea of shipping something that we 100% know is broken.

Given Jeff's commit followed the precedent set by the fix for
CVE-2018-1058, I'm inclined to think he was on the right track.  Perhaps a
more targeted fix, such as only changing search_path when the command is
not run by the table owner (as suggested upthread [0]) is worth
considering.

[0] https://postgr.es/m/CAKFQuwaVJkM9u%2BqpOaom2UkPE1sz0BASF-E5amxWPxncUhm4Hw%40mail.gmail.com

-- 
Nathan Bossart
Amazon Web Services: https://aws.amazon.com

pgsql-hackers by date:

From: "Jonathan S. Katz"
Date: 29 June 2023, 22:51:10
Subject: Re: plan_create_index_workers doesn't account for TOAST

From: Nathan Bossart
Date: 29 June 2023, 23:56:38
Subject: Re: vacuumdb/clusterdb/reindexdb: allow specifying objects to process in all databases

Re: pgsql: Fix search_path to a safe value during maintenance operations. - Mailing list pgsql-hackers

Previous

Next