Convert newlines to spaces in names written in v11+ pg_dump comments. - user/sven/postgresql.git

diff options

author	Noah Misch <noah@leadboat.com>	2025-08-11 06:18:59 -0700
committer	Noah Misch <noah@leadboat.com>	2025-08-11 06:18:59 -0700
commit	70693c645f6e490b9ed450e8611e94ab7af3aad2 (patch)
tree	507a18c4c1ca8dac829621ba69004856869363a9 /src/interfaces/jdbc/postgresql/largeobject/LargeObject.java
parent	22424953cded3f83f0382383773eaf36eb1abda9 (diff)

Convert newlines to spaces in names written in v11+ pg_dump comments.

Maliciously-crafted object names could achieve SQL injection during restore. CVE-2012-0868 fixed this class of problem at the time, but later work reintroduced three cases. Commit bc8cd50fefd369b217f80078585c486505aafb62 (back-patched to v11+ in 2023-05 releases) introduced the pg_dump case. Commit 6cbdbd9e8d8f2986fde44f2431ed8d0c8fce7f5d (v12+) introduced the two pg_dumpall cases. Move sanitize_line(), unchanged, to dumputils.c so pg_dumpall has access to it in all supported versions. Back-patch to v13 (all supported versions). Reviewed-by: Robert Haas <robertmhaas@gmail.com> Reviewed-by: Nathan Bossart <nathandbossart@gmail.com> Backpatch-through: 13 Security: CVE-2025-8715

Diffstat (limited to 'src/interfaces/jdbc/postgresql/largeobject/LargeObject.java')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: