Last-minute updates for release notes.

Security: CVE-2023-39417, CVE-2023-39418

diff --git a/doc/src/sgml/release-11.sgml b/doc/src/sgml/release-11.sgml
index 91fd813bd3c7544a9fb5862291c93ad7ca77cd20..8a35fbe2bff2c92aa41cf4a5b72d91ffe75bc8d9 100644 (file)
--- a/doc/src/sgml/release-11.sgml
+++ b/doc/src/sgml/release-11.sgml
@@ -30,7 +30,7 @@
 
    <para>
     However, if you use BRIN indexes, it may be advisable to reindex them;
-    see the first changelog entry below.
+    see the second changelog entry below.
    </para>
 
    <para>
@@ -46,6 +46,35 @@
 
     <listitem>
 <!--
+Author: Noah Misch <[email protected]>
+Branch: master [cd5f2a357] 2023-08-07 06:05:56 -0700
+Branch: REL_16_STABLE [f53511010] 2023-08-07 06:05:59 -0700
+Branch: REL_15_STABLE [de494ec14] 2023-08-07 06:06:00 -0700
+Branch: REL_14_STABLE [d4648a74b] 2023-08-07 06:06:00 -0700
+Branch: REL_13_STABLE [b1b585e0f] 2023-08-07 06:06:00 -0700
+Branch: REL_12_STABLE [eb044d8f0] 2023-08-07 06:06:00 -0700
+Branch: REL_11_STABLE [919ebb023] 2023-08-07 06:06:01 -0700
+-->
+     <para>
+      Disallow substituting a schema or owner name into an extension script
+      if the name contains a quote, backslash, or dollar sign (Noah Misch)
+     </para>
+
+     <para>
+      This restriction guards against SQL-injection hazards for trusted
+      extensions.
+     </para>
+
+     <para>
+      The <productname>PostgreSQL</productname> Project thanks Micah Gate,
+      Valerie Woolard, Tim Carey-Smith, and Christoph Berg for reporting
+      this problem.
+      (CVE-2023-39417)
+     </para>
+    </listitem>
+
+    <listitem>
+<!--
 Author: Tomas Vondra <[email protected]>
 Branch: master Release: REL_16_BR [3581cbdcd] 2023-05-19 01:29:44 +0200
 Branch: REL_15_STABLE [e18769323] 2023-05-19 00:15:13 +0200