Home > mailing lists

pgsql: Ensure cached plans are correctly marked as dependent on role. - Mailing list pgsql-committers

From	Nathan Bossart
Subject	pgsql: Ensure cached plans are correctly marked as dependent on role.
Date	November 11 21:00:50
Msg-id	E1tAVuL-001Jhz-OZ@gemulon.postgresql.org Whole thread Raw
List	pgsql-committers

Tree view

Ensure cached plans are correctly marked as dependent on role.

If a CTE, subquery, sublink, security invoker view, or coercion
projection references a table with row-level security policies, we
neglected to mark the plan as potentially dependent on which role
is executing it.  This could lead to later executions in the same
session returning or hiding rows that should have been hidden or
returned instead.

Reported-by: Wolfgang Walther
Reviewed-by: Noah Misch
Security: CVE-2024-10976
Backpatch-through: 12

Branch
------
REL_17_STABLE

Details
-------
https://git.postgresql.org/pg/commitdiff/edcda9bb4c4500b75bb4a16c7c59834398ca2906

Modified Files
--------------
src/backend/executor/functions.c          |   6 ++
src/backend/rewrite/rewriteHandler.c      |  67 ++++++++++++++++++--
src/test/regress/expected/rowsecurity.out | 100 ++++++++++++++++++++++++++++++
src/test/regress/sql/rowsecurity.sql      |  58 +++++++++++++++++
src/tools/pgindent/typedefs.list          |   1 +
5 files changed, 226 insertions(+), 6 deletions(-)

pgsql-committers by date:

From: Noah Misch
Date: 11 November, 20:26:09
Subject: pgsql: Block environment variable mutations from trusted PL/Perl.

From: Tom Lane
Date: 11 November, 21:30:14
Subject: pgsql: Fix improper interactions between session_authorization and role

pgsql: Ensure cached plans are correctly marked as dependent on role. - Mailing list pgsql-committers

Previous

Next