Last-minute updates for release notes.

author Tom Lane <tgl@sss.pgh.pa.us>

Mon, 5 Oct 2015 14:57:15 +0000 (10:57 -0400)

committer Tom Lane <tgl@sss.pgh.pa.us>

Mon, 5 Oct 2015 14:57:50 +0000 (10:57 -0400)
author Tom Lane <tgl@sss.pgh.pa.us>
Mon, 5 Oct 2015 14:57:15 +0000 (10:57 -0400)
committer Tom Lane <tgl@sss.pgh.pa.us>
Mon, 5 Oct 2015 14:57:50 +0000 (10:57 -0400)
diff --git a/doc/src/sgml/release-9.0.sgml b/doc/src/sgml/release-9.0.sgml

index 93198931f88bace1f00246d703681b3248e0b9a0..ef8eb1c9ad2d912a62e499641611c1e2c7c9e325 100644 (file)
--- a/doc/src/sgml/release-9.0.sgml
+++ b/doc/src/sgml/release-9.0.sgml
@@ -40,6 +40,20 @@
  
     <itemizedlist>
  
+    <listitem>
+     <para>
+      Fix <filename>contrib/pgcrypto</> to detect and report
+      too-short <function>crypt()</> salts (Josh Kupershmidt)
+     </para>
+
+     <para>
+      Certain invalid salt arguments crashed the server or disclosed a few
+      bytes of server memory.  We have not ruled out the viability of
+      attacks that arrange for presence of confidential information in the
+      disclosed bytes, but they seem unlikely.  (CVE-2015-5288)
+     </para>
+    </listitem>
+
      <listitem>
       <para>
        Fix subtransaction cleanup after a portal (cursor) belonging to an
@@ -124,6 +138,14 @@
       </para>
      </listitem>
  
+    <listitem>
+     <para>
+      Guard against hard-to-reach stack overflows involving record types,
+      range types, <type>json</>, <type>jsonb</>, <type>tsquery</>,
+      <type>ltxtquery</> and <type>query_int</> (Noah Misch)
+     </para>
+    </listitem>
+
      <listitem>
       <para>
        Fix handling of <literal>DOW</> and <literal>DOY</> in datetime input
author	Tom Lane <tgl@sss.pgh.pa.us>
	Mon, 5 Oct 2015 14:57:15 +0000 (10:57 -0400)
committer	Tom Lane <tgl@sss.pgh.pa.us>
	Mon, 5 Oct 2015 14:57:50 +0000 (10:57 -0400)