Again match pg_user_mappings to information_schema.user_mapping_options.
Noah Misch <noah@leadboat.com>
Again match pg_user_mappings to information_schema.user_mapping_options. Commit 3eefc51053f250837c3115c12f8119d16881a2d7 claimed to make pg_user_mappings enforce the qualifications user_mapping_options had been enforcing, but its removal of a longstanding restriction left them distinct when the current user is the subject of a mapping yet has no server privileges. user_mapping_options emits no rows for such a mapping, but pg_user_mappings includes full umoptions. Change pg_user_mappings to show null for umoptions. Back-patch to 9.2, like the above commit. Reviewed by Tom Lane. Reported by Jeff Janes. Security: CVE-2017-7547
Files
| Path | Change | +/− |
|---|---|---|
| doc/src/sgml/catalogs.sgml | modified | +26 −6 |
| src/backend/catalog/system_views.sql | modified | +3 −1 |
| src/test/regress/expected/foreign_data.out | modified | +17 −15 |
| src/test/regress/expected/rules.out | modified | +1 −1 |
| src/test/regress/sql/foreign_data.sql | modified | +10 −7 |