[ubuntu/impish-security] postgresql-13 13.5-0ubuntu0.21.10.1 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Thu Nov 11 18:20:32 UTC 2021


postgresql-13 (13.5-0ubuntu0.21.10.1) impish-security; urgency=medium

  * New upstream version (LP: #1950268).

    + Make the server reject extraneous data after an SSL or GSS
      encryption handshake
      CVE-2021-23214

    + Make libpq reject extraneous data after an SSL or GSS
      encryption handshake
      CVE-2021-23222

    + A dump/restore is not required for those running 13.X.

    + However, note that installations using physical replication should
      update standby servers before the primary server, details in the
      release notes linked below.

    + Also, several bugs have been found that may have resulted in corrupted
      indexes, explained in detail in the release notes linked below. If any
      of those cases apply to you, it's recommended to reindex
      possibly-affected indexes after updating.

    + Also, if you are upgrading from a version earlier than 13.2,
      see those release notes as well please.

    + Details about these and many further changes can be found at:
      https://www.postgresql.org/docs/13/release-13-5.html

Date: 2021-11-11 12:01:19.090275+00:00
Changed-By: Christian Ehrhardt  <christian.ehrhardt at canonical.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/postgresql-13/13.5-0ubuntu0.21.10.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the impish-changes mailing list