Home > mailing lists

Re: [BUGS] BUG #14833: Row security policies using session variablecan be circumvented - Mailing list pgsql-bugs

From	David G. Johnston
Subject	Re: [BUGS] BUG #14833: Row security policies using session variablecan be circumvented
Date	September 28, 2017 22:47:20
Msg-id	CAKFQuwZe-bezSjVVHNPn=X6PsK=C3o7yDXPP-hTWuvwnx9Uq4w@mail.gmail.com Whole thread Raw
In response to	Re: [BUGS] BUG #14833: Row security policies using session variablecan be circumvented (Guillaume Lelarge <guillaume@lelarge.info>)
List	pgsql-bugs

Tree view

On Thu, Sep 28, 2017 at 9:27 AM, Guillaume Lelarge <guillaume@lelarge.info> wrote:

2017-09-28 11:25 GMT+02:00 <ivo@limmen.org>:
The following bug has been logged on the website:

Bug reference: 14833
Logged by: Ivo Limmen
Email address: ivo@limmen.org
PostgreSQL version: 9.5.8
Operating system: Linux Mint 18.2
Description:

FTR, this was originally sent to -bugs via email (as opposed to the online form) and responded to there. Closed as not being a code bug though this report and my personal opinion suggest the potential for documentation improvement.

To get the desired behavior "FORCE ROW LEVEL SECURITY" should be set on the table (and, I think, don't have the table owned by a superuser).

David J.

pgsql-bugs by date:

From: Alvaro Herrera
Date: 28 September 2017, 22:47:13
Subject: Re: [BUGS] Old row version in hot chain become visible after a freeze

From: Tomas Vondra
Date: 28 September 2017, 23:01:04
Subject: Re: [BUGS] Something strang on "left join"

Re: [BUGS] BUG #14833: Row security policies using session variablecan be circumvented - Mailing list pgsql-bugs

Previous

Next