Описание
ELSA-2010-0429: postgresql security update (MODERATE)
[8.1.21-1.el5_5.1]
- Update to PostgreSQL 8.1.21 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/8.1/static/release.html Resolves: #586058
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
postgresql
8.1.21-1.el5_5.1
postgresql-contrib
8.1.21-1.el5_5.1
postgresql-devel
8.1.21-1.el5_5.1
postgresql-docs
8.1.21-1.el5_5.1
postgresql-libs
8.1.21-1.el5_5.1
postgresql-pl
8.1.21-1.el5_5.1
postgresql-python
8.1.21-1.el5_5.1
postgresql-server
8.1.21-1.el5_5.1
postgresql-tcl
8.1.21-1.el5_5.1
postgresql-test
8.1.21-1.el5_5.1
Oracle Linux x86_64
postgresql
8.1.21-1.el5_5.1
postgresql-contrib
8.1.21-1.el5_5.1
postgresql-devel
8.1.21-1.el5_5.1
postgresql-docs
8.1.21-1.el5_5.1
postgresql-libs
8.1.21-1.el5_5.1
postgresql-pl
8.1.21-1.el5_5.1
postgresql-python
8.1.21-1.el5_5.1
postgresql-server
8.1.21-1.el5_5.1
postgresql-tcl
8.1.21-1.el5_5.1
postgresql-test
8.1.21-1.el5_5.1
Oracle Linux i386
postgresql
8.1.21-1.el5_5.1
postgresql-contrib
8.1.21-1.el5_5.1
postgresql-devel
8.1.21-1.el5_5.1
postgresql-docs
8.1.21-1.el5_5.1
postgresql-libs
8.1.21-1.el5_5.1
postgresql-pl
8.1.21-1.el5_5.1
postgresql-python
8.1.21-1.el5_5.1
postgresql-server
8.1.21-1.el5_5.1
postgresql-tcl
8.1.21-1.el5_5.1
postgresql-test
8.1.21-1.el5_5.1
Ссылки на источники
Связанные уязвимости
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1. ...