1
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
8
CONTENT="Modular DocBook HTML Stylesheet Version 1.79"><LINK
10
HREF="mailto:pgsql-docs@postgresql.org"><LINK
12
TITLE="PostgreSQL 9.1beta1 Documentation"
13
HREF="index.html"><LINK
16
HREF="release.html"><LINK
18
TITLE="Release 8.2.18"
19
HREF="release-8-2-18.html"><LINK
21
TITLE="Release 8.2.16"
22
HREF="release-8-2-16.html"><LINK
25
HREF="stylesheet.css"><META
26
HTTP-EQUIV="Content-Type"
27
CONTENT="text/html; charset=ISO-8859-1"><META
29
CONTENT="2011-04-27T21:20:33"></HEAD
35
SUMMARY="Header navigation table"
47
>PostgreSQL 9.1beta1 Documentation</A
56
TITLE="Release 8.2.18"
57
HREF="release-8-2-18.html"
74
>Appendix E. Release Notes</TD
89
TITLE="Release 8.2.16"
90
HREF="release-8-2-16.html"
104
NAME="RELEASE-8-2-17"
105
>E.36. Release 8.2.17</A
118
> This release contains a variety of fixes from 8.2.16.
119
For information about new features in the 8.2 major release, see
121
HREF="release-8-2.html"
131
>E.36.1. Migration to Version 8.2.17</A
134
> A dump/restore is not required for those running 8.2.X.
135
However, if you are upgrading from a version earlier than 8.2.14,
136
see the release notes for 8.2.14.
152
> Enforce restrictions in <TT
155
> using an opmask applied to
156
the whole interpreter, instead of using <TT
160
(Tim Bunce, Andrew Dunstan)
163
> Recent developments have convinced us that <TT
167
insecure to rely on for making <TT
171
change removes use of <TT
174
> altogether, in favor of using
175
a separate interpreter with an opcode mask that is always applied.
176
Pleasant side effects of the change include that it is now possible to
180
> pragma in a natural way in
184
>, and that Perl's <TT
191
variables work as expected in sort routines, and that function
192
compilation is significantly faster. (CVE-2010-1169)
197
> Prevent PL/Tcl from executing untrustworthy code from
204
> PL/Tcl's feature for autoloading Tcl code from a database table
205
could be exploited for trojan-horse attacks, because there was no
206
restriction on who could create or insert into that table. This change
207
disables the feature unless <TT
211
superuser. (However, the permissions on the table are not checked, so
212
installations that really need a less-than-secure modules table can
213
still grant suitable privileges to trusted non-superusers.) Also,
214
prevent loading code into the unrestricted <SPAN
218
interpreter unless we are really going to execute a <TT
222
function. (CVE-2010-1170)
227
> Fix possible crash if a cache reset message is received during
228
rebuild of a relcache entry (Heikki)
231
> This error was introduced in 8.2.16 while fixing a related failure.
236
> Do not allow an unprivileged user to reset superuser-only parameter
240
> Previously, if an unprivileged user ran <TT
242
>ALTER USER ... RESET
244
> for himself, or <TT
246
>ALTER DATABASE ... RESET ALL</TT
248
a database he owns, this would remove all special parameter settings
249
for the user or database, even ones that are only supposed to be
250
changeable by a superuser. Now, the <TT
254
remove the parameters that the user has permission to change.
259
> Avoid possible crash during backend shutdown if shutdown occurs
263
> addition would be made to log entries (Tom)
266
> In some cases the context-printing function would fail because the
267
current transaction had already been rolled back when it came time
268
to print a log message.
273
> Update pl/perl's <TT
276
> for modern Perl versions
282
> Fix assorted memory leaks in pl/python (Andreas Freund, Tom)
287
> Prevent infinite recursion in <SPAN
291
a variable that refers to itself (Tom)
302
> to not add spaces around
305
>\copy (select ...)</TT
309
> Addition of spaces around the decimal point in a numeric literal would
310
result in a syntax error.
317
>contrib/pgstattuple</TT
318
> functions respond to cancel
319
interrupts promptly (Tatsuhito Kasahara)
324
> Make server startup deal properly with the case that
332
shared memory segment (Tom)
335
> This behavior has been observed on BSD-derived kernels including OS X.
336
It resulted in an entirely-misleading startup failure complaining that
337
the shared memory request size was too large.
342
> Avoid possible crashes in syslogger process on Windows (Heikki)
347
> Deal more robustly with incomplete time zone information in the
348
Windows registry (Magnus)
353
> Update the set of known Windows time zone names (Magnus)
358
> Update time zone data files to <SPAN
362
for DST law changes in Argentina, Australian Antarctic, Bangladesh,
363
Mexico, Morocco, Pakistan, Palestine, Russia, Syria, Tunisia;
364
also historical corrections for Taiwan.
370
> (Pakistan Summer Time) to the default set of
371
timezone abbreviations.
382
SUMMARY="Footer navigation table"
393
HREF="release-8-2-18.html"
411
HREF="release-8-2-16.html"
b'\\ No newline at end of file'