Force certain "pljava" custom GUCs to be PGC_SUSET. Future PL/Java versions will close CVE-2016-0766 by making these GUCs PGC_SUSET. This PostgreSQL change independently mitigates that PL/Java vulnerability, helping sites that update PostgreSQL more frequently than PL/Java. Back-patch to 9.1 (all supported versions).
Branch ------ REL9_1_STABLE Details ------- http://git.postgresql.org/pg/commitdiff/b1f591c50e3bd359c610e59dfbd3787c00ac191e Modified Files -------------- src/backend/utils/misc/guc.c | 11 +++++++++++ 1 file changed, 11 insertions(+) -- Sent via pgsql-committers mailing list ([email protected]) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-committers
