<sect1 id="release-4-2-22">
<title>ใชใชใผใน 4.2.22</title>
- <note>
- <title>ใชใชใผในๆฅ</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>ใชใชใผในๆฅ</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>ๆฆ่ฆ</title>
+ <para>
+ ใใฎใชใชใผในใซใฏใใปใญใฅใชใใฃไฟฎๆญฃใๅซใพใใฆใใพใใ
+ </para>
+ <para>
+ <productname>Pgpool-II</productname>ใฎใฏใฉใคใขใณใ่ช่จผใกใซใใบใ ใซใฏ่ช่จผใใคใในใฎ่ๅผฑๆงใใใใพใใ
+ ๆฌๆฅใงใใใฐ่ช่จผใๅฟ
่ฆใชๅ ดๅใงใใ่ช่จผๅฆ็ใในใญใใใใใฆใใพใๅฏ่ฝๆงใใใใพใใ
+ ใใฎ่ๅผฑๆงใๆช็จใใใใจใงใๆปๆ่
ใไปปๆใฎใฆใผใถใจใใฆใญใฐใคใณใใใใผใฟใใผในๅ
ใฎๆ
ๅ ฑใๅ็
งใปๆนใใใใใใใใผใฟใใผในใๅๆญขใใใใใใใใจใใงใใๅฏ่ฝๆงใใใใพใใ(CVE-2025-46801)
+ </para>
+ <para>
+ ใชใใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใไธ่จใฎใใฟใผใณ1ใใ3ใใใใใฎๆกไปถใๆบใใๅ ดๅใซ้ใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ ใใฟใผใณ 1๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>password</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใ่จญๅฎใใใฆใใชใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>scram-sha-256</literal>ใพใใฏ<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 2๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 3๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ rawใขใผใใไฝฟ็จใใฆใใ (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใใใญในใใพใใฏAESๅฝขๅผใง็ป้ฒใใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ ใใฎ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใ<productname>Pgpool-II</productname> 4.0็ณปใใใณ4.1็ณปใฎใในใฆใฎใใผใธใงใณใ4.2.0-4.2.21ใ4.3.0-4.3.14ใ4.4.0-4.4.11ใ4.5.0-4.5.6ใ4.6.0ใงใใ
+ <productname>Pgpool-II</productname> 4.6.1ใ4.5.7ใ4.4.12ใ4.3.15ใ4.2.22ไปฅ้ใธใฎใขใใใฐใฌใผใใๅผทใใๅงใใใพใใ
+ ใใใใงใใชใๅ ดๅใฏใ็บ็ๆกไปถใใฟใผใณใซๅฝใฆใฏใพใใชใ่จญๅฎใฎ็ตใฟๅใใใซๅคๆดใใฆใใ ใใใ
+ </para>
+ </sect2>
<sect2>
<title>ๅคๆด็น</title>
<sect1 id="release-4-3-15">
<title>ใชใชใผใน 4.3.15</title>
- <note>
- <title>ใชใชใผในๆฅ</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>ใชใชใผในๆฅ</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>ๆฆ่ฆ</title>
+ <para>
+ ใใฎใชใชใผในใซใฏใใปใญใฅใชใใฃไฟฎๆญฃใๅซใพใใฆใใพใใ
+ </para>
+ <para>
+ <productname>Pgpool-II</productname>ใฎใฏใฉใคใขใณใ่ช่จผใกใซใใบใ ใซใฏ่ช่จผใใคใในใฎ่ๅผฑๆงใใใใพใใ
+ ๆฌๆฅใงใใใฐ่ช่จผใๅฟ
่ฆใชๅ ดๅใงใใ่ช่จผๅฆ็ใในใญใใใใใฆใใพใๅฏ่ฝๆงใใใใพใใ
+ ใใฎ่ๅผฑๆงใๆช็จใใใใจใงใๆปๆ่
ใไปปๆใฎใฆใผใถใจใใฆใญใฐใคใณใใใใผใฟใใผในๅ
ใฎๆ
ๅ ฑใๅ็
งใปๆนใใใใใใใใผใฟใใผในใๅๆญขใใใใใใใใจใใงใใๅฏ่ฝๆงใใใใพใใ(CVE-2025-46801)
+ </para>
+ <para>
+ ใชใใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใไธ่จใฎใใฟใผใณ1ใใ3ใใใใใฎๆกไปถใๆบใใๅ ดๅใซ้ใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ ใใฟใผใณ 1๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>password</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใ่จญๅฎใใใฆใใชใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>scram-sha-256</literal>ใพใใฏ<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 2๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 3๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ rawใขใผใใไฝฟ็จใใฆใใ (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใใใญในใใพใใฏAESๅฝขๅผใง็ป้ฒใใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ ใใฎ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใ<productname>Pgpool-II</productname> 4.0็ณปใใใณ4.1็ณปใฎใในใฆใฎใใผใธใงใณใ4.2.0-4.2.21ใ4.3.0-4.3.14ใ4.4.0-4.4.11ใ4.5.0-4.5.6ใ4.6.0ใงใใ
+ <productname>Pgpool-II</productname> 4.6.1ใ4.5.7ใ4.4.12ใ4.3.15ใ4.2.22ไปฅ้ใธใฎใขใใใฐใฌใผใใๅผทใใๅงใใใพใใ
+ ใใใใงใใชใๅ ดๅใฏใ็บ็ๆกไปถใใฟใผใณใซๅฝใฆใฏใพใใชใ่จญๅฎใฎ็ตใฟๅใใใซๅคๆดใใฆใใ ใใใ
+ </para>
+ </sect2>
<sect2>
<title>ๅคๆด็น</title>
<sect1 id="release-4-4-12">
<title>ใชใชใผใน 4.4.12</title>
- <note>
- <title>ใชใชใผในๆฅ</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>ใชใชใผในๆฅ</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>ๆฆ่ฆ</title>
+ <para>
+ ใใฎใชใชใผในใซใฏใใปใญใฅใชใใฃไฟฎๆญฃใๅซใพใใฆใใพใใ
+ </para>
+ <para>
+ <productname>Pgpool-II</productname>ใฎใฏใฉใคใขใณใ่ช่จผใกใซใใบใ ใซใฏ่ช่จผใใคใในใฎ่ๅผฑๆงใใใใพใใ
+ ๆฌๆฅใงใใใฐ่ช่จผใๅฟ
่ฆใชๅ ดๅใงใใ่ช่จผๅฆ็ใในใญใใใใใฆใใพใๅฏ่ฝๆงใใใใพใใ
+ ใใฎ่ๅผฑๆงใๆช็จใใใใจใงใๆปๆ่
ใไปปๆใฎใฆใผใถใจใใฆใญใฐใคใณใใใใผใฟใใผในๅ
ใฎๆ
ๅ ฑใๅ็
งใปๆนใใใใใใใใผใฟใใผในใๅๆญขใใใใใใใใจใใงใใๅฏ่ฝๆงใใใใพใใ(CVE-2025-46801)
+ </para>
+ <para>
+ ใชใใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใไธ่จใฎใใฟใผใณ1ใใ3ใใใใใฎๆกไปถใๆบใใๅ ดๅใซ้ใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ ใใฟใผใณ 1๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>password</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใ่จญๅฎใใใฆใใชใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>scram-sha-256</literal>ใพใใฏ<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 2๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 3๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ rawใขใผใใไฝฟ็จใใฆใใ (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใใใญในใใพใใฏAESๅฝขๅผใง็ป้ฒใใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ ใใฎ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใ<productname>Pgpool-II</productname> 4.0็ณปใใใณ4.1็ณปใฎใในใฆใฎใใผใธใงใณใ4.2.0-4.2.21ใ4.3.0-4.3.14ใ4.4.0-4.4.11ใ4.5.0-4.5.6ใ4.6.0ใงใใ
+ <productname>Pgpool-II</productname> 4.6.1ใ4.5.7ใ4.4.12ใ4.3.15ใ4.2.22ไปฅ้ใธใฎใขใใใฐใฌใผใใๅผทใใๅงใใใพใใ
+ ใใใใงใใชใๅ ดๅใฏใ็บ็ๆกไปถใใฟใผใณใซๅฝใฆใฏใพใใชใ่จญๅฎใฎ็ตใฟๅใใใซๅคๆดใใฆใใ ใใใ
+ </para>
+ </sect2>
<sect2>
<title>ๅคๆด็น</title>
<sect1 id="release-4-5-7">
<title>ใชใชใผใน 4.5.7</title>
- <note>
- <title>ใชใชใผในๆฅ</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>ใชใชใผในๆฅ</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>ๆฆ่ฆ</title>
+ <para>
+ ใใฎใชใชใผในใซใฏใใปใญใฅใชใใฃไฟฎๆญฃใๅซใพใใฆใใพใใ
+ </para>
+ <para>
+ <productname>Pgpool-II</productname>ใฎใฏใฉใคใขใณใ่ช่จผใกใซใใบใ ใซใฏ่ช่จผใใคใในใฎ่ๅผฑๆงใใใใพใใ
+ ๆฌๆฅใงใใใฐ่ช่จผใๅฟ
่ฆใชๅ ดๅใงใใ่ช่จผๅฆ็ใในใญใใใใใฆใใพใๅฏ่ฝๆงใใใใพใใ
+ ใใฎ่ๅผฑๆงใๆช็จใใใใจใงใๆปๆ่
ใไปปๆใฎใฆใผใถใจใใฆใญใฐใคใณใใใใผใฟใใผในๅ
ใฎๆ
ๅ ฑใๅ็
งใปๆนใใใใใใใใผใฟใใผในใๅๆญขใใใใใใใใจใใงใใๅฏ่ฝๆงใใใใพใใ(CVE-2025-46801)
+ </para>
+ <para>
+ ใชใใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใไธ่จใฎใใฟใผใณ1ใใ3ใใใใใฎๆกไปถใๆบใใๅ ดๅใซ้ใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ ใใฟใผใณ 1๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>password</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใ่จญๅฎใใใฆใใชใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>scram-sha-256</literal>ใพใใฏ<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 2๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ ใใฟใผใณ 3๏ผๆฌกใฎๆกไปถใใในใฆๆบใใๅ ดๅใๆฌ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใๅฏ่ฝๆงใใใใพใใ
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ rawใขใผใใไฝฟ็จใใฆใใ (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_hba.conf</filename>ใง<literal>md5</literal>่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pool_passwd</filename>ใซๅฏพ่ฑกใฆใผใถใฎใในใฏใผใใใใญในใใพใใฏAESๅฝขๅผใง็ป้ฒใใใฆใใ
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ <filename>pg_hba.conf</filename>ใง<literal>password</literal>ใ<literal>pam</literal>ใ<literal>ldap</literal>ใฎใใใใใฎ่ช่จผๆนๅผใไฝฟ็จใใฆใใ
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ ใใฎ่ๅผฑๆงใฎๅฝฑ้ฟใๅใใใฎใฏใ<productname>Pgpool-II</productname> 4.0็ณปใใใณ4.1็ณปใฎใในใฆใฎใใผใธใงใณใ4.2.0-4.2.21ใ4.3.0-4.3.14ใ4.4.0-4.4.11ใ4.5.0-4.5.6ใ4.6.0ใงใใ
+ <productname>Pgpool-II</productname> 4.6.1ใ4.5.7ใ4.4.12ใ4.3.15ใ4.2.22ไปฅ้ใธใฎใขใใใฐใฌใผใใๅผทใใๅงใใใพใใ
+ ใใใใงใใชใๅ ดๅใฏใ็บ็ๆกไปถใใฟใผใณใซๅฝใฆใฏใพใใชใ่จญๅฎใฎ็ตใฟๅใใใซๅคๆดใใฆใใ ใใใ
+ </para>
+ </sect2>
<sect2>
<title>ๅคๆด็น</title>
<sect1 id="release-4-2-22">
<title>Release 4.2.22</title>
- <note>
- <title>Release Date</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>Release Date</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>Overview</title>
+ <para>
+ This release contains a security fix.
+ </para>
+ <para>
+ An authentication bypass vulnerability exists in the client authentication
+ mechanism of <productname>Pgpool-II</productname>.
+ In <productname>Pgpool-II</productname>, authentication may be bypassed even
+ when it is supposed to be enforced. As a result, an attacker could log in as
+ any user, potentially leading to information disclosure, data tampering, or
+ even a complete shutdown of the database. (CVE-2025-46801)
+ </para>
+ <para>
+ This vulnerability affects systems where the authentication configuration
+ matches one of the following patterns:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Pattern 1: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ The <literal>password</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is not set in <filename>pool_passwd</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>scram-sha-256</literal> or <literal>md5</literal> authentication
+ method is used in <filename>pg_hba.conf</filename>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 2: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in pg_hba.conf:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 3: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Raw mode is used (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>md5</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is registered in <filename>pool_passwd</filename> in plain
+ text or AES format
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in
+ <filename>pg_hba.conf</filename>:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ All versions of Pgpool-II 4.0 and 4.1 series, 4.2.0 to 4.2.21, 4.3.0 to 4.3.14,
+ 4.4.0 to 4.4.11, 4.5.0 to 4.5.6 and 4.6.0 are affected by this vulnerability.
+ It is strongly recommended to upgrade to <productname>Pgpool-II</productname>
+ 4.6.1, 4.5.7, 4.4.12, 4.3.15 and 4.2.22 or later.
+ Alternatively, you can modify your settings so that they do not match any of
+ the vulnerable configuration patterns.
+ </para>
+ </sect2>
<sect2>
<title>Changes</title>
<sect1 id="release-4-3-15">
<title>Release 4.3.15</title>
- <note>
- <title>Release Date</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>Release Date</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>Overview</title>
+ <para>
+ This release contains a security fix.
+ </para>
+ <para>
+ An authentication bypass vulnerability exists in the client authentication
+ mechanism of <productname>Pgpool-II</productname>.
+ In <productname>Pgpool-II</productname>, authentication may be bypassed even
+ when it is supposed to be enforced. As a result, an attacker could log in as
+ any user, potentially leading to information disclosure, data tampering, or
+ even a complete shutdown of the database. (CVE-2025-46801)
+ </para>
+ <para>
+ This vulnerability affects systems where the authentication configuration
+ matches one of the following patterns:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Pattern 1: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ The <literal>password</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is not set in <filename>pool_passwd</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>scram-sha-256</literal> or <literal>md5</literal> authentication
+ method is used in <filename>pg_hba.conf</filename>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 2: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in pg_hba.conf:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 3: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Raw mode is used (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>md5</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is registered in <filename>pool_passwd</filename> in plain
+ text or AES format
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in
+ <filename>pg_hba.conf</filename>:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ All versions of Pgpool-II 4.0 and 4.1 series, 4.2.0 to 4.2.21, 4.3.0 to 4.3.14,
+ 4.4.0 to 4.4.11, 4.5.0 to 4.5.6 and 4.6.0 are affected by this vulnerability.
+ It is strongly recommended to upgrade to <productname>Pgpool-II</productname>
+ 4.6.1, 4.5.7, 4.4.12, 4.3.15 and 4.2.22 or later.
+ Alternatively, you can modify your settings so that they do not match any of
+ the vulnerable configuration patterns.
+ </para>
+ </sect2>
<sect2>
<title>Changes</title>
<sect1 id="release-4-4-12">
<title>Release 4.4.12</title>
- <note>
- <title>Release Date</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>Release Date</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>Overview</title>
+ <para>
+ This release contains a security fix.
+ </para>
+ <para>
+ An authentication bypass vulnerability exists in the client authentication
+ mechanism of <productname>Pgpool-II</productname>.
+ In <productname>Pgpool-II</productname>, authentication may be bypassed even
+ when it is supposed to be enforced. As a result, an attacker could log in as
+ any user, potentially leading to information disclosure, data tampering, or
+ even a complete shutdown of the database. (CVE-2025-46801)
+ </para>
+ <para>
+ This vulnerability affects systems where the authentication configuration
+ matches one of the following patterns:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Pattern 1: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ The <literal>password</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is not set in <filename>pool_passwd</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>scram-sha-256</literal> or <literal>md5</literal> authentication
+ method is used in <filename>pg_hba.conf</filename>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 2: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in pg_hba.conf:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 3: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Raw mode is used (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>md5</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is registered in <filename>pool_passwd</filename> in plain
+ text or AES format
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in
+ <filename>pg_hba.conf</filename>:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ All versions of Pgpool-II 4.0 and 4.1 series, 4.2.0 to 4.2.21, 4.3.0 to 4.3.14,
+ 4.4.0 to 4.4.11, 4.5.0 to 4.5.6 and 4.6.0 are affected by this vulnerability.
+ It is strongly recommended to upgrade to <productname>Pgpool-II</productname>
+ 4.6.1, 4.5.7, 4.4.12, 4.3.15 and 4.2.22 or later.
+ Alternatively, you can modify your settings so that they do not match any of
+ the vulnerable configuration patterns.
+ </para>
+ </sect2>
<sect2>
<title>Changes</title>
<sect1 id="release-4-5-7">
<title>Release 4.5.7</title>
- <note>
- <title>Release Date</title>
- <simpara>2025-05-15</simpara>
- </note>
+ <note>
+ <title>Release Date</title>
+ <simpara>2025-05-15</simpara>
+ </note>
+
+ <sect2>
+ <title>Overview</title>
+ <para>
+ This release contains a security fix.
+ </para>
+ <para>
+ An authentication bypass vulnerability exists in the client authentication
+ mechanism of <productname>Pgpool-II</productname>.
+ In <productname>Pgpool-II</productname>, authentication may be bypassed even
+ when it is supposed to be enforced. As a result, an attacker could log in as
+ any user, potentially leading to information disclosure, data tampering, or
+ even a complete shutdown of the database. (CVE-2025-46801)
+ </para>
+ <para>
+ This vulnerability affects systems where the authentication configuration
+ matches one of the following patterns:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Pattern 1: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ The <literal>password</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is not set in <filename>pool_passwd</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>scram-sha-256</literal> or <literal>md5</literal> authentication
+ method is used in <filename>pg_hba.conf</filename>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 2: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ enable_pool_hba = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in pg_hba.conf:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+
+ <listitem>
+ <para>
+ Pattern 3: This vulnerability occurs when all of the following conditions are met:
+ </para>
+ <itemizedlist>
+ <listitem>
+ <para>
+ Raw mode is used (backend_clustering_mode = 'raw')
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The <literal>md5</literal> authentication method is used in
+ <filename>pool_hba.conf</filename>
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ allow_clear_text_frontend_auth = off
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ The user's password is registered in <filename>pool_passwd</filename> in plain
+ text or AES format
+ </para>
+ </listitem>
+ <listitem>
+ <para>
+ One of the following authentication methods is used in
+ <filename>pg_hba.conf</filename>:
+ <literal>password</literal>, <literal>pam</literal>, or <literal>ldap</literal>
+ </para>
+ </listitem>
+ </itemizedlist>
+ </listitem>
+ </itemizedlist>
+ <para>
+ All versions of Pgpool-II 4.0 and 4.1 series, 4.2.0 to 4.2.21, 4.3.0 to 4.3.14,
+ 4.4.0 to 4.4.11, 4.5.0 to 4.5.6 and 4.6.0 are affected by this vulnerability.
+ It is strongly recommended to upgrade to <productname>Pgpool-II</productname>
+ 4.6.1, 4.5.7, 4.4.12, 4.3.15 and 4.2.22 or later.
+ Alternatively, you can modify your settings so that they do not match any of
+ the vulnerable configuration patterns.
+ </para>
+ </sect2>
<sect2>
<title>Changes</title>
projects / pgpool2.git / commitdiff