php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #40173 pg_metadata ignores visibility scope of current postgres user
Submitted: 2007-01-19 16:54 UTC Modified: 2007-01-27 01:00 UTC
From: denis at edistar dot com Assigned:
Status: No Feedback Package: PostgreSQL related
PHP Version: 5.2.0 OS: Linux kernel 2.6.17
Private report: No CVE-ID: None
 [2007-01-19 16:54 UTC] denis at edistar dot com
Description:
------------
pg_metadata does not check if the current postgres user has the correct rights on the visibility  of the table passed as parameter.

So, if we have two postgres users (userA and userB for example) with two authorization schemas (that have the same name userA and userB) and in each schema we have a table with the same name but with different definition,
we can access only one of the two tables... 

Also pg_metadata does not accept passing the table with a namespace attached (for exampl userA.mytable)


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2007-01-19 17:04 UTC] tony2001@php.net
Thank you for this bug report. To properly diagnose the problem, we
need a short but complete example script to be able to reproduce
this bug ourselves. 

A proper reproducing script starts with <?php and ends with ?>,
is max. 10-20 lines long and does not require any external 
resources such as databases, etc. If the script requires a 
database to demonstrate the issue, please make sure it creates 
all necessary tables, stored procedures etc.

Please avoid embedding huge scripts into the report.


 [2007-01-27 01:00 UTC] php-bugs at lists dot php dot net
No feedback was provided for this bug for over a week, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Thu Dec 26 20:01:29 2024 UTC