| Server IP : 172.67.134.114 / Your IP : 162.159.115.41 Web Server : Apache/2.4.37 System : Linux almalinux.duckdns.org 4.18.0-553.111.1.el8_10.x86_64 #1 SMP Sun Mar 8 20:06:07 EDT 2026 x86_64 User : ricodeal ( 1046) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /usr/share/doc/postgresql-docs/html/ |
Upload File : |
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /><title>E.23. Release 10.1</title><link rel="stylesheet" type="text/css" href="stylesheet.css" /><link rev="made" href="[email protected]" /><meta name="generator" content="DocBook XSL Stylesheets Vsnapshot" /><link rel="prev" href="release-10-2.html" title="E.22. Release 10.2" /><link rel="next" href="release-10.html" title="E.24. Release 10" /></head><body><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navheader"><table width="100%" summary="Navigation header"><tr><th colspan="5" align="center">E.23. Release 10.1</th></tr><tr><td width="10%" align="left"><a accesskey="p" href="release-10-2.html" title="E.22. Release 10.2">Prev</a> </td><td width="10%" align="left"><a accesskey="u" href="release.html" title="Appendix E. Release Notes">Up</a></td><th width="60%" align="center">Appendix E. Release Notes</th><td width="10%" align="right"><a accesskey="h" href="index.html" title="PostgreSQL 10.23 Documentation">Home</a></td><td width="10%" align="right"> <a accesskey="n" href="release-10.html" title="E.24. Release 10">Next</a></td></tr></table><hr></hr></div><div class="sect1" id="RELEASE-10-1"><div class="titlepage"><div><div><h2 class="title" style="clear: both">E.23. Release 10.1</h2></div></div></div><div class="toc"><dl class="toc"><dt><span class="sect2"><a href="release-10-1.html#id-1.11.6.27.4">E.23.1. Migration to Version 10.1</a></span></dt><dt><span class="sect2"><a href="release-10-1.html#id-1.11.6.27.5">E.23.2. Changes</a></span></dt></dl></div><p><strong>Release date: </strong>2017-11-09</p><p> This release contains a variety of fixes from 10.0.
For information about new features in major release 10, see
<a class="xref" href="release-10.html" title="E.24. Release 10">Section E.24</a>.
</p><div class="sect2" id="id-1.11.6.27.4"><div class="titlepage"><div><div><h3 class="title">E.23.1. Migration to Version 10.1</h3></div></div></div><p> A dump/restore is not required for those running 10.X.
</p><p> However, if you use BRIN indexes, see the fourth changelog entry below.
</p></div><div class="sect2" id="id-1.11.6.27.5"><div class="titlepage"><div><div><h3 class="title">E.23.2. Changes</h3></div></div></div><div class="itemizedlist"><ul class="itemizedlist" style="list-style-type: disc; "><li class="listitem"><p> Ensure that <code class="literal">INSERT ... ON CONFLICT DO UPDATE</code> checks
table permissions and RLS policies in all cases (Dean Rasheed)
</p><p> The update path of <code class="literal">INSERT ... ON CONFLICT DO UPDATE</code>
requires <code class="literal">SELECT</code> permission on the columns of the
arbiter index, but it failed to check for that in the case of an
arbiter specified by constraint name.
In addition, for a table with row level security enabled, it failed to
check updated rows against the table's <code class="literal">SELECT</code>
policies (regardless of how the arbiter index was specified).
(CVE-2017-15099)
</p></li><li class="listitem"><p> Fix crash due to rowtype mismatch
in <code class="function">json{b}_populate_recordset()</code>
(Michael Paquier, Tom Lane)
</p><p> These functions used the result rowtype specified in the <code class="literal">FROM
... AS</code> clause without checking that it matched the actual
rowtype of the supplied tuple value. If it didn't, that would usually
result in a crash, though disclosure of server memory contents seems
possible as well.
(CVE-2017-15098)
</p></li><li class="listitem"><p> Fix sample server-start scripts to become <code class="literal">$PGUSER</code>
before opening <code class="literal">$PGLOG</code> (Noah Misch)
</p><p> Previously, the postmaster log file was opened while still running as
root. The database owner could therefore mount an attack against
another system user by making <code class="literal">$PGLOG</code> be a symbolic
link to some other file, which would then become corrupted by appending
log messages.
</p><p> By default, these scripts are not installed anywhere. Users who have
made use of them will need to manually recopy them, or apply the same
changes to their modified versions. If the
existing <code class="literal">$PGLOG</code> file is root-owned, it will need to
be removed or renamed out of the way before restarting the server with
the corrected script.
(CVE-2017-12172)
</p></li><li class="listitem"><p> Fix BRIN index summarization to handle concurrent table extension
correctly (Álvaro Herrera)
</p><p> Previously, a race condition allowed some table rows to be omitted from
the index. It may be necessary to reindex existing BRIN indexes to
recover from past occurrences of this problem.
</p></li><li class="listitem"><p> Fix possible failures during concurrent updates of a BRIN index
(Tom Lane)
</p><p> These race conditions could result in errors like <span class="quote">“<span class="quote">invalid index
offnum</span>”</span> or <span class="quote">“<span class="quote">inconsistent range map</span>”</span>.
</p></li><li class="listitem"><p> Prevent logical replication from setting non-replicated columns to
nulls when replicating an <code class="command">UPDATE</code> (Petr Jelinek)
</p></li><li class="listitem"><p> Fix logical replication to fire <code class="literal">BEFORE ROW DELETE</code>
triggers when expected (Masahiko Sawada)
</p><p> Previously, that failed to happen unless the table also had
a <code class="literal">BEFORE ROW UPDATE</code> trigger.
</p></li><li class="listitem"><p> Fix crash when logical decoding is invoked from a SPI-using function,
in particular any function written in a PL language
(Tom Lane)
</p></li><li class="listitem"><p> Ignore CTEs when looking up the target table for
<code class="command">INSERT</code>/<code class="command">UPDATE</code>/<code class="command">DELETE</code>,
and prevent matching schema-qualified target table names to trigger
transition table names (Thomas Munro)
</p><p> This restores the pre-v10 behavior for CTEs attached to DML commands.
</p></li><li class="listitem"><p> Avoid evaluating an aggregate function's argument expression(s) at rows
where its <code class="literal">FILTER</code> test fails (Tom Lane)
</p><p> This restores the pre-v10 (and SQL-standard) behavior.
</p></li><li class="listitem"><p> Fix incorrect query results when multiple <code class="literal">GROUPING
SETS</code> columns contain the same simple variable (Tom Lane)
</p></li><li class="listitem"><p> Fix query-lifespan memory leakage while evaluating a set-returning
function in a <code class="command">SELECT</code>'s target list (Tom Lane)
</p></li><li class="listitem"><p> Allow parallel execution of prepared statements with generic plans
(Amit Kapila, Kuntal Ghosh)
</p></li><li class="listitem"><p> Fix incorrect parallelization decisions for nested queries
(Amit Kapila, Kuntal Ghosh)
</p></li><li class="listitem"><p> Fix parallel query handling to not fail when a recently-used role is
dropped (Amit Kapila)
</p></li><li class="listitem"><p> Fix crash in parallel execution of a bitmap scan having a BitmapAnd
plan node below a BitmapOr node (Dilip Kumar)
</p></li><li class="listitem"><p> Fix <code class="function">json_build_array()</code>,
<code class="function">json_build_object()</code>, and their <code class="type">jsonb</code>
equivalents to handle explicit <code class="literal">VARIADIC</code> arguments
correctly (Michael Paquier)
</p></li><li class="listitem"><p> Fix autovacuum's <span class="quote">“<span class="quote">work item</span>”</span> logic to prevent possible
crashes and silent loss of work items (Álvaro Herrera)
</p></li><li class="listitem"><p> Fix corner-case crashes when columns have been added to the end of a
view (Tom Lane)
</p></li><li class="listitem"><p> Record proper dependencies when a view or rule
contains <code class="structname">FieldSelect</code>
or <code class="structname">FieldStore</code> expression nodes (Tom Lane)
</p><p> Lack of these dependencies could allow a column or data
type <code class="command">DROP</code> to go through when it ought to fail,
thereby causing later uses of the view or rule to get errors.
This patch does not do anything to protect existing views/rules,
only ones created in the future.
</p></li><li class="listitem"><p> Correctly detect hashability of range data types (Tom Lane)
</p><p> The planner mistakenly assumed that any range type could be hashed
for use in hash joins or hash aggregation, but actually it must check
whether the range's subtype has hash support. This does not affect any
of the built-in range types, since they're all hashable anyway.
</p></li><li class="listitem"><p> Correctly ignore <code class="structname">RelabelType</code> expression nodes
when examining functional-dependency statistics (David Rowley)
</p><p> This allows, e.g., extended statistics on <code class="type">varchar</code> columns
to be used properly.
</p></li><li class="listitem"><p> Prevent sharing transition states between ordered-set aggregates
(David Rowley)
</p><p> This causes a crash with the built-in ordered-set aggregates, and
probably with user-written ones as well. v11 and later will include
provisions for dealing with such cases safely, but in released
branches, just disable the optimization.
</p></li><li class="listitem"><p> Prevent <code class="varname">idle_in_transaction_session_timeout</code> from
being ignored when a <code class="varname">statement_timeout</code> occurred
earlier (Lukas Fittl)
</p></li><li class="listitem"><p> Fix low-probability loss of <code class="command">NOTIFY</code> messages due to
XID wraparound (Marko Tiikkaja, Tom Lane)
</p><p> If a session executed no queries, but merely listened for
notifications, for more than 2 billion transactions, it started to miss
some notifications from concurrently-committing transactions.
</p></li><li class="listitem"><p> Reduce the frequency of data flush requests during bulk file copies to
avoid performance problems on macOS, particularly with its new APFS
file system (Tom Lane)
</p></li><li class="listitem"><p> Allow <code class="command">COPY</code>'s <code class="literal">FREEZE</code> option to
work when the transaction isolation level is <code class="literal">REPEATABLE
READ</code> or higher (Noah Misch)
</p><p> This case was unintentionally broken by a previous bug fix.
</p></li><li class="listitem"><p> Fix <code class="function">AggGetAggref()</code> to return the
correct <code class="structname">Aggref</code> nodes to aggregate final
functions whose transition calculations have been merged (Tom Lane)
</p></li><li class="listitem"><p> Fix insufficient schema-qualification in some new queries
in <span class="application">pg_dump</span>
and <span class="application">psql</span>
(Vitaly Burovoy, Tom Lane, Noah Misch)
</p></li><li class="listitem"><p> Avoid use of <code class="literal">@></code> operator
in <span class="application">psql</span>'s queries for <code class="command">\d</code>
(Tom Lane)
</p><p> This prevents problems when the <span class="application">parray_gin</span>
extension is installed, since that defines a conflicting operator.
</p></li><li class="listitem"><p> Fix <span class="application">pg_basebackup</span>'s matching of tablespace
paths to canonicalize both paths before comparing (Michael Paquier)
</p><p> This is particularly helpful on Windows.
</p></li><li class="listitem"><p> Fix <span class="application">libpq</span> to not require user's home
directory to exist (Tom Lane)
</p><p> In v10, failure to find the home directory while trying to
read <code class="filename">~/.pgpass</code> was treated as a hard error,
but it should just cause that file to not be found. Both v10 and
previous release branches made the same mistake when
reading <code class="filename">~/.pg_service.conf</code>, though this was less
obvious since that file is not sought unless a service name is
specified.
</p></li><li class="listitem"><p> In ecpglib, correctly handle backslashes in string literals depending
on whether <code class="varname">standard_conforming_strings</code> is set
(Tsunakawa Takayuki)
</p></li><li class="listitem"><p> Make ecpglib's Informix-compatibility mode ignore fractional digits in
integer input strings, as expected (Gao Zengqi, Michael Meskes)
</p></li><li class="listitem"><p> Fix missing temp-install prerequisites
for <code class="literal">check</code>-like Make targets (Noah Misch)
</p><p> Some non-default test procedures that are meant to work
like <code class="literal">make check</code> failed to ensure that the temporary
installation was up to date.
</p></li><li class="listitem"><p> Update time zone data files to <span class="application">tzdata</span>
release 2017c for DST law changes in Fiji, Namibia, Northern Cyprus,
Sudan, Tonga, and Turks & Caicos Islands, plus historical
corrections for Alaska, Apia, Burma, Calcutta, Detroit, Ireland,
Namibia, and Pago Pago.
</p></li><li class="listitem"><p> In the documentation, restore HTML anchors to being upper-case strings
(Peter Eisentraut)
</p><p> Due to a toolchain change, the 10.0 user manual had lower-case strings
for intrapage anchors, thus breaking some external links into our
website documentation. Return to our previous convention of using
upper-case strings.
</p></li></ul></div></div></div><div xmlns="http://www.w3.org/TR/xhtml1/transitional" class="navfooter"><hr></hr><table width="100%" summary="Navigation footer"><tr><td width="40%" align="left"><a accesskey="p" href="release-10-2.html" title="E.22. Release 10.2">Prev</a> </td><td width="20%" align="center"><a accesskey="u" href="release.html" title="Appendix E. Release Notes">Up</a></td><td width="40%" align="right"> <a accesskey="n" href="release-10.html" title="E.24. Release 10">Next</a></td></tr><tr><td width="40%" align="left" valign="top">E.22. Release 10.2 </td><td width="20%" align="center"><a accesskey="h" href="index.html" title="PostgreSQL 10.23 Documentation">Home</a></td><td width="40%" align="right" valign="top"> E.24. Release 10</td></tr></table></div></body></html>