GUC deprecation and RESET logic bugfixes
- Fix GUC deprecation logic to stop printing noisy NOTICEs every time
GUCs are referenced. - Appropriately check for
RESET SESSION AUTHORIZATIONand drop invalid
reference toRESET USER.
This release addresses CVE-2021-38140:
Potential privilege escalation using
RESET SESSION AUTHORIZATIONafterset_user(). This is now blocked along withRESET ROLE.