Remove typmod checking from the recent security-related patches. It turns
out that ExecEvalVar and friends don't necessarily have access to a tuple
descriptor with correct typmod: it definitely can contain -1, and possibly
might contain other values that are different from the Var's value.
Arguably this should be cleaned up someday, but it's not a simple change,
and in any case typmod discrepancies don't pose a security hazard.
Per reports from numerous people :-(
I'm not entirely sure whether the failure can occur in 8.0 --- the simple
test cases reported so far don't trigger it there. But back-patch the
change all the way anyway.
execQual.c (r220.127.116.11 -> r18.104.22.168)
pgsql-committers by date
|Next:||From: Bruce Momjian||Date: 2007-02-06 18:31:27|
|Subject: pgsql: Update timezone FAQ item: <P>USA saving time changes are |
|Previous:||From: Tom Lane||Date: 2007-02-06 17:35:34|
|Subject: pgsql: Remove typmod checking from the recent security-related patches.|