2 matches found
CVE-2023-22847
CVE-2023-22847 affects the pg_ivm extension (versions before 1.5.1). An Incrementally Maintainable Materialized View (IMMV) may reflect rows protected by Row-Level Security, allowing unauthorized users to access restricted data. The issue is confirmed across multiple sources; fix is to update to ...
CVE-2023-23554
CVE-2023-23554 affects the pg_ivm PostgreSQL extension (versions prior to 1.5.1). When refreshing an Incrementally Maintained Materialized View (IMMV), pg_ivm may execute functions without fully qualifying schema names, allowing potential execution of functions from other schemas with the IMMV ow...