ProHoster > Uhlaziyo lwePostgreSQL kunye nokulungiswa komngcipheko. Ukukhutshwa kwenkqubo ye pgcat yophindaphindo

Uhlaziyo lwePostgreSQL kunye nokulungiswa komngcipheko. Ukukhutshwa kwenkqubo ye pgcat yophindaphindo

Yakhiwe uhlaziyo olulungisayo kuwo onke amasebe e-PostgreSQL axhaswayo: 12.2, 11.7, 10.12, 9.6.17, 9.5.21 ΠΈ 9.4.26. Ukukhutshwa kwe-9.4.26 kukugqibela - ukulungiselela uhlaziyo lwesebe 9.4 iyekisiwe. Uhlaziyo lwesebe 9.5 luya kuveliswa de kube nguFebruwari 2021, 9.6 - de kube ngoNovemba 2021, 10 - de kube ngoNovemba 2022, 11 - de kube ngoNovemba 2023, 12 - kude kube nguNovemba 2024.

Iinguqulelo ezintsha zilungisa iibhugi ezingama-75 kwaye ziphelise ukuba sesichengeni
(CVE-2020-1720) okubangelwa ukutshekisha okugunyazisiweyo okulahlekileyo xa uqhuba "I-ALTER ... IXHOMELEKILE EKUKWANDISWENI" komyalelo. Phantsi kweemeko ezithile, ukuba sesichengeni kuvumela umsebenzisi ongekho sikweni ukuba acime nawuphi na umsebenzi, inkqubo, imbono eyenziweyo, isalathisi, okanye i-trigger. Uhlaselo lunokwenzeka ukuba umlawuli ufake naluphi na ulwandiso, kwaye umsebenzisi unokuphumeza umyalelo we-CREATE okanye umnini wolwandiso unokuqiniseka ukuba aphumeze umyalelo we-DROP EXTENSION.

Ukongeza, unokuqaphela ukubonakala kwesicelo esitsha pgcat, ekuvumela ukuba uphindaphinde idatha phakathi kweeseva ezininzi zePostgreSQL. Inkqubo ixhasa ukuphindaphinda okunengqiqo ngosasazo kunye nokudlala kwenye inginginya yemiyalelo yeSQL eyenziwa kwiseva ephambili, ekhokelela kutshintsho lwedatha. Ikhowudi ibhalwe ngolwimi lweGo kunye isasazwa ngu ilayisenisi phantsi kweApache 2.0. Umahluko ophambili kwindlela eyakhelweyo yophindaphindo esengqiqweni:

  • Inkxaso yazo naziphi na iindidi zeetheyibhile ekujoliswe kuzo (imibono, i-fdw (i-Foreign Data Wrapper), iitheyibhile ezicandiweyo, iitafile ezisasaziweyo zecitus);
  • Ukukwazi ukuchaza kwakhona amagama etafile (ukuphindaphinda ukusuka kwitafile ukuya kwenye);
  • Inkxaso yokuphindaphindwa kwe-bidirectional ngokuhambisa kuphela utshintsho lwendawo kunye nokungahoywa kweempendulo ezivela ngaphandle;
  • Ukufumaneka kwenkqubo yokusombulula ingxabano esekelwe kwi-algorithm ye-LWW (umbhali-wokugqibela-wokuphumelela);
  • Ukukwazi ukugcina ulwazi malunga nenkqubela phambili yokuphindaphinda kunye neekopi ezingasetyenziswanga kwitafile eyahlukileyo, engasetyenziselwa ukubuyisela emva kokuba i-node engafumanekiyo yokufumana ibuyiselwe.

umthombo: opennet.ru

Yongeza izimvo