Make currtid() functions require SELECT privileges on the target table.
Tom Lane <tgl@sss.pgh.pa.us>
Make currtid() functions require SELECT privileges on the target table. While it's not clear that TID linkage info is of any great use to a nefarious user, it's certainly unexpected that these functions wouldn't insist on read privileges.
Files
| Path | Change | +/− |
|---|---|---|
| src/backend/utils/adt/tid.c | modified | +19 −1 |