postgresql-8.4 (8.4.22-0ubuntu0.10.04.1) lucid-security; urgency=medium
* Add 15-to_char_buffer_overflow.patch and
16-to_char_buffer_overflow_time.patch:
Fix buffer overruns in to_char() [CVE-2015-0241]
* Add 17-pgcrypto_pullf_read_max_overflow.patch and
18-pgcrypto_imath_fixes.patch:
Fix buffer overruns in contrib/pgcrypto [CVE-2015-0243]
* Add 19-ensure_frontend_backend_sync.patch:
Fix possible loss of frontend/backend protocol synchronization after an
error [CVE-2015-0244]
* Add 20-column_privilege_leak.patch:
Fix information leak via constraint-violation error messages
[CVE-2014-8161]
* Note: CVE-2015-0242 does not affect Ubuntu packages as we use glibc's
snprintf().
Date: 2015-02-11 15:31:21.724549+00:00
Changed-By: Martin Pitt <martin.p...@ubuntu.com>
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/postgresql-8.4/8.4.22-0ubuntu0.10.04.1
Sorry, changesfile not available.
--
Lucid-changes mailing list
Lucid-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/lucid-changes
