projects / postgresql.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: d1d286d) | patch
Fix privilege checks in pg_stats_ext and pg_stats_ext_exprs.
authorNathan Bossart
Mon, 6 May 2024 14:00:00 +0000 (09:00 -0500)
committerNathan Bossart
Mon, 6 May 2024 14:00:00 +0000 (09:00 -0500)
commit521a7156ab47623e299855dd04a2a4ea3ad71afe
tree0dbfc5a63b0ff96c19de1999ab989dd4e4e97a41tree
parentd1d286d83c0eed695910cb20d970ea9bea2e5001commit | diff
Fix privilege checks in pg_stats_ext and pg_stats_ext_exprs.

The catalog view pg_stats_ext fails to consider privileges for
expression statistics.  The catalog view pg_stats_ext_exprs fails
to consider privileges and row-level security policies.  To fix,
restrict the data in these views to table owners or roles that
inherit privileges of the table owner.  It may be possible to apply
less restrictive privilege checks in some cases, but that is left
as a future exercise.  Furthermore, for pg_stats_ext_exprs, do not
return data for tables with row-level security enabled, as is
already done for pg_stats_ext.

On the back-branches, a fix-CVE-2024-4317.sql script is provided
that will install into the "share" directory.  This file can be
used to apply the fix to existing clusters.

Bumps catversion on 'master' branch only.

Reported-by: Lukas Fittl
Reviewed-by: Noah Misch, Tomas Vondra, Tom Lane
Security: CVE-2024-4317
Backpatch-through: 14
doc/src/sgml/catalogs.sgml diff | blob | blame | history
doc/src/sgml/system-views.sgml diff | blob | blame | history
src/backend/catalog/system_views.sql diff | blob | blame | history
src/include/catalog/catversion.h diff | blob | blame | history
src/test/regress/expected/rules.out diff | blob | blame | history
src/test/regress/expected/stats_ext.out diff | blob | blame | history
src/test/regress/sql/stats_ext.sql diff | blob | blame | history
This is the main PostgreSQL git repository.