File _patchinfo of Package patchinfo.3221

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.3221

<patchinfo incident="3221">
  <issue id="973660" tracker="bnc">postgresql needs Requires for timezone to be run in docker image</issue>
  <issue id="993453" tracker="bnc">VUL-0: CVE-2016-5424 : postgresql: privilege escalation via crafted database and role names</issue>
  <issue id="993454" tracker="bnc">VUL-0: CVE-2016-5423: postgresql: CASE/WHEN with inlining can cause untrusted pointer dereference</issue>
  <issue id="2016-5423" tracker="cve" />
  <issue id="2016-5424" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>faweiss</packager>
  <description>This update for postgresql94 to version 9.4.9 fixes the several issues.

These security issues were fixed:
- CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference (bsc#993454).
- CVE-2016-5424: Fix client programs' handling of special characters in database and role names (bsc#993453).

This non-security issue was fixed:
- bsc#973660: Added "Requires: timezone" to Service Pack

For additional non-security issues please refer to
- http://www.postgresql.org/docs/9.4/static/release-9-4-9.html
- http://www.postgresql.org/docs/9.4/static/release-9-4-8.html
- http://www.postgresql.org/docs/9.4/static/release-9-4-7.html
</description>
  <summary>Security update for postgresql94</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.3221

Places