Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

Fix markup.

Security: CVE-2007-2138
  • Loading branch information...
commit ce8a3e6c88bde941225b6c984da7d706f7840b3d 1 parent e05d987
Tom Lane authored
Showing with 6 additions and 11 deletions.
  1. +6 −11 doc/src/sgml/release.sgml
View
17 doc/src/sgml/release.sgml
@@ -1,4 +1,4 @@
-<!-- $PostgreSQL: pgsql/doc/src/sgml/release.sgml,v 1.488.2.9 2007/04/20 02:37:48 tgl Exp $ -->
+<!-- $PostgreSQL: pgsql/doc/src/sgml/release.sgml,v 1.488.2.10 2007/04/20 03:27:34 tgl Exp $ -->
<!--
Typical markup:
@@ -73,8 +73,7 @@ do it for earlier branch release files.
truly secure value of <varname>search_path</>. Without it,
an unprivileged SQL user can use temporary objects to execute code
with the privileges of the security-definer function (CVE-2007-2138).
- See <xref linkend="sql-createfunction"
- endterm="sql-createfunction-title"> for more information.
+ See <command>CREATE FUNCTION</> for more information.
</para>
</listitem>
@@ -3106,8 +3105,7 @@ do it for earlier branch release files.
truly secure value of <varname>search_path</>. Without it,
an unprivileged SQL user can use temporary objects to execute code
with the privileges of the security-definer function (CVE-2007-2138).
- See <xref linkend="sql-createfunction"
- endterm="sql-createfunction-title"> for more information.
+ See <command>CREATE FUNCTION</> for more information.
</para>
</listitem>
@@ -6146,8 +6144,7 @@ psql -t -f fixseq.sql db1 | psql -e db1
truly secure value of <varname>search_path</>. Without it,
an unprivileged SQL user can use temporary objects to execute code
with the privileges of the security-definer function (CVE-2007-2138).
- See <xref linkend="sql-createfunction"
- endterm="sql-createfunction-title"> for more information.
+ See <command>CREATE FUNCTION</> for more information.
</para>
</listitem>
@@ -9656,8 +9653,7 @@ typedefs (Michael)</para></listitem>
truly secure value of <varname>search_path</>. Without it,
an unprivileged SQL user can use temporary objects to execute code
with the privileges of the security-definer function (CVE-2007-2138).
- See <xref linkend="sql-createfunction"
- endterm="sql-createfunction-title"> for more information.
+ See <command>CREATE FUNCTION</> for more information.
</para>
</listitem>
@@ -12843,8 +12839,7 @@ DROP SCHEMA information_schema CASCADE;
truly secure value of <varname>search_path</>. Without it,
an unprivileged SQL user can use temporary objects to execute code
with the privileges of the security-definer function (CVE-2007-2138).
- See <xref linkend="sql-createfunction"
- endterm="sql-createfunction-title"> for more information.
+ See <command>CREATE FUNCTION</> for more information.
</para>
</listitem>
Please sign in to comment.
Something went wrong with that request. Please try again.