| From: | Alvaro Herrera <alvherre(at)commandprompt(dot)com> |
|---|---|
| To: | Peter Eisentraut <peter_e(at)gmx(dot)net> |
| Cc: | pgsql-bugs(at)postgresql(dot)org, Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us>, Sergey Burladyan <eshkinkot(at)gmail(dot)com>, pgsql-hackers(at)postgresql(dot)org |
| Subject: | Re: bug or not bug, xmlvalidate(xml, text) can read and show one line from file |
| Date: | 2008-02-29 19:42:27 |
| Message-ID: | 20080229194227.GO4673@alvh.no-ip.org |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-bugs pgsql-hackers |
Peter Eisentraut escribió:
> Am Freitag, 29. Februar 2008 schrieb Tom Lane:
> > Sergey Burladyan <eshkinkot(at)gmail(dot)com> writes:
> > > [ xmlvalidate is a security hole ]
> >
> > Given that this function is not documented nor tested in the regression
> > tests, I propose diking it out entirely.
>
> Yes, it was accidentally left over from previous work. We should have removed
> it before the release, but that would have required an initdb.
So let's change it for a function that elog(ERROR)s on entry.
--
Alvaro Herrera http://www.CommandPrompt.com/
PostgreSQL Replication, Consulting, Custom Development, 24x7 support
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2008-02-29 19:47:51 | Re: bug or not bug, xmlvalidate(xml, text) can read and show one line from file |
| Previous Message | Peter Eisentraut | 2008-02-29 19:30:10 | Re: bug or not bug, xmlvalidate(xml, text) can read and show one line from file |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Tom Lane | 2008-02-29 19:47:51 | Re: bug or not bug, xmlvalidate(xml, text) can read and show one line from file |
| Previous Message | Webb Sprague | 2008-02-29 19:32:43 | Re: creating new aggregate function |