diff options
| author | Tom Lane | 2025-11-10 18:36:13 +0000 |
|---|---|---|
| committer | Tom Lane | 2025-11-10 18:36:13 +0000 |
| commit | b2e70cc348992012cab140172d0aaf9a3bec6b0b (patch) | |
| tree | 0de8e1d042884177f79e16c028db300d5bb42b74 | |
| parent | d20abb5876ab61a627d80131b2cb78d9652557e3 (diff) | |
Last-minute updates for release notes.
Security: CVE-2025-12817, CVE-2025-12818
| -rw-r--r-- | doc/src/sgml/release-16.sgml | 61 |
1 files changed, 61 insertions, 0 deletions
diff --git a/doc/src/sgml/release-16.sgml b/doc/src/sgml/release-16.sgml index 512e3d15408..ed8dc6410dc 100644 --- a/doc/src/sgml/release-16.sgml +++ b/doc/src/sgml/release-16.sgml @@ -35,6 +35,67 @@ <listitem> <!-- +Author: Nathan Bossart <[email protected]> +Branch: master [5e4fcbe53] 2025-11-10 09:00:00 -0600 +Branch: REL_18_STABLE [00eb646ea] 2025-11-10 09:00:00 -0600 +Branch: REL_17_STABLE [e2fb3dfa8] 2025-11-10 09:00:00 -0600 +Branch: REL_16_STABLE [d20abb587] 2025-11-10 09:00:00 -0600 +Branch: REL_15_STABLE [2393d374a] 2025-11-10 09:00:00 -0600 +Branch: REL_14_STABLE [95cce5669] 2025-11-10 09:00:00 -0600 +Branch: REL_13_STABLE [8a2530ebc] 2025-11-10 09:00:00 -0600 +--> + <para> + Check for <literal>CREATE</literal> privileges on the schema + in <command>CREATE STATISTICS</command> (Jelte Fennema-Nio) + <ulink url="&commit_baseurl;d20abb587">§</ulink> + </para> + + <para> + This omission allowed table owners to create statistics in any + schema, potentially leading to unexpected naming conflicts. + </para> + + <para> + The <productname>PostgreSQL</productname> Project thanks + Jelte Fennema-Nio for reporting this problem. + (CVE-2025-12817) + </para> + </listitem> + + <listitem> +<!-- +Author: Jacob Champion <[email protected]> +Branch: master [600086f47] 2025-11-10 06:20:33 -0800 +Branch: REL_18_STABLE [7eb8fcad8] 2025-11-10 06:03:01 -0800 +Branch: REL_17_STABLE [f5999f018] 2025-11-10 06:03:03 -0800 +Branch: REL_16_STABLE [585fd9b3c] 2025-11-10 06:03:04 -0800 +Branch: REL_15_STABLE [91421565f] 2025-11-10 06:03:05 -0800 +Branch: REL_14_STABLE [96d2c7e96] 2025-11-10 06:03:05 -0800 +Branch: REL_13_STABLE [d6f0c0d6d] 2025-11-10 06:03:06 -0800 +--> + <para> + Avoid integer overflow in allocation-size calculations + within <application>libpq</application> (Jacob Champion) + <ulink url="&commit_baseurl;585fd9b3c">§</ulink> + </para> + + <para> + Several places in <application>libpq</application> were not + sufficiently careful about computing the required size of a memory + allocation. Sufficiently large inputs could cause integer overflow, + resulting in an undersized buffer, which would then lead to writing + past the end of the buffer. + </para> + + <para> + The <productname>PostgreSQL</productname> Project thanks Aleksey + Solovev of Positive Technologies for reporting this problem. + (CVE-2025-12818) + </para> + </listitem> + + <listitem> +<!-- Author: Richard Guo <[email protected]> Branch: master [b63a82245] 2025-09-16 18:42:20 +0900 Branch: REL_18_STABLE Release: REL_18_0 [d29a3f4b4] 2025-09-16 18:43:57 +0900 |