← Back to branch summary

~ubuntu-branches/ubuntu/oneiric/postgresql-9.1/oneiric-security

« back to all changes in this revision

Viewing changes to src/backend/commands/sequence.c

  • Committer: Package Import Robot
  • Author(s): Martin Pitt
  • Date: 2013-02-05 18:13:52 UTC
  • mfrom: (1.1.10) (10.1.5 oneiric-proposed)
  • Revision ID: package-import@ubuntu.com-20130205181352-3kw4f94ilqklzm7c
Tags: 9.1.8-0ubuntu11.10
https://launchpad.net/bugs/1116336
* New upstream security/bug fix release: (LP: #1116336)
  - Prevent execution of enum_recv from SQL
    The function was misdeclared, allowing a simple SQL command to crash the
    server.  In principle an attacker might be able to use it to examine the
    contents of server memory.  Our thanks to Sumit Soni (via Secunia SVCRP)
    for reporting this issue. (CVE-2013-0255)
  - See HISTORY/changelog.gz for the other bug fixes.

Show diffs side-by-side

added added

removed removed

Lines of Context:
src/backend/commands/sequence.c
538
538
                                                RelationGetRelationName(seqrel))));
539
539
 
540
540
        /* read-only transactions may only modify temp sequences */
541
 
        if (seqrel->rd_backend != MyBackendId)
 
541
        if (!seqrel->rd_islocaltemp)
542
542
                PreventCommandIfReadOnly("nextval()");
543
543
 
544
544
        if (elm->last != elm->cached)           /* some numbers were cached */
831
831
                                                RelationGetRelationName(seqrel))));
832
832
 
833
833
        /* read-only transactions may only modify temp sequences */
834
 
        if (seqrel->rd_backend != MyBackendId)
 
834
        if (!seqrel->rd_islocaltemp)
835
835
                PreventCommandIfReadOnly("setval()");
836
836
 
837
837
        /* lock page' buffer and read tuple */