[ubuntu/lucid-updates] postgresql-8.4 8.4.22-0ubuntu0.10.04.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Feb 11 18:28:32 UTC 2015
postgresql-8.4 (8.4.22-0ubuntu0.10.04.1) lucid-security; urgency=medium
* Add 15-to_char_buffer_overflow.patch and 16-to_char_buffer_overflow_time.patch:
Fix buffer overruns in to_char() [CVE-2015-0241]
* Add 17-pgcrypto_pullf_read_max_overflow.patch and 18-pgcrypto_imath_fixes.patch:
Fix buffer overruns in contrib/pgcrypto [CVE-2015-0243]
* Add 19-ensure_frontend_backend_sync.patch:
Fix possible loss of frontend/backend protocol synchronization after an
error [CVE-2015-0244]
* Add 20-column_privilege_leak.patch:
Fix information leak via constraint-violation error messages
[CVE-2014-8161]
* Note: CVE-2015-0242 does not affect Ubuntu packages as we use glibc's
snprintf().
Date: 2015-02-11 15:31:21.724549+00:00
Changed-By: Martin Pitt <martin.pitt at ubuntu.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/postgresql-8.4/8.4.22-0ubuntu0.10.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list