Описание
ELSA-2015-2081: postgresql security update (MODERATE)
[8.4.20-4]
- fix for CVE-2015-5288 (rhbz#1273446)
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
postgresql
8.4.20-4.el6_7
postgresql-contrib
8.4.20-4.el6_7
postgresql-devel
8.4.20-4.el6_7
postgresql-docs
8.4.20-4.el6_7
postgresql-libs
8.4.20-4.el6_7
postgresql-plperl
8.4.20-4.el6_7
postgresql-plpython
8.4.20-4.el6_7
postgresql-pltcl
8.4.20-4.el6_7
postgresql-server
8.4.20-4.el6_7
postgresql-test
8.4.20-4.el6_7
Oracle Linux i686
postgresql
8.4.20-4.el6_7
postgresql-contrib
8.4.20-4.el6_7
postgresql-devel
8.4.20-4.el6_7
postgresql-docs
8.4.20-4.el6_7
postgresql-libs
8.4.20-4.el6_7
postgresql-plperl
8.4.20-4.el6_7
postgresql-plpython
8.4.20-4.el6_7
postgresql-pltcl
8.4.20-4.el6_7
postgresql-server
8.4.20-4.el6_7
postgresql-test
8.4.20-4.el6_7
Связанные CVE
Связанные уязвимости
The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a "too-short" salt.
The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a "too-short" salt.
The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a "too-short" salt.
The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9. ...
