Summary: | dev-db/postgresql two new PostgreSQL security problems (CAN-2005-1409, CAN-2005-1410) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | James Bannon <james.bannon> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | esigra, pgsql-bugs |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.postgresql.org | ||
Whiteboard: | B3? [glsa] jaervosz | ||
Package list: | Runtime testing required: | --- |
Description
James Bannon
2005-05-02 14:31:43 UTC
postgresql please advise. More details are found http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-1409 and a confirm in http://www.postgresql.org/about/news.315 The two vulnerabilities can cause a DoS. I recommend setting it to B3. Secunia advises on postgresql security patches from Ubuntu. Check http://secunia.com/advisories/15248/ 7.4.7-r2 8.0.1-r3 8.0.2-r1 in cvs. Arches please test and mark stable. Target keywords: 7.4.7-r2: x86 ppc sparc mips alpha arm hppa amd64 ia64 s390 ppc64 8.0.1-r3: x86 ppc sparc ~mips alpha arm hppa amd64 ia64 s390 ppc64 Stable on ppc. stable on sparc stable on amd64 Stable on hppa. Stable on ppc64 Stable on alpha + ia64. x86 please test and mark stable. arm/s390 stable Please mark stable on x86 stable on x86 Thx Masatomo. This one is ready for GLSA decision, I vote a full YES. Yes too GLSA 2005-12 |