[3.0] postgresql: Security issues (CVE-2016-0766, CVE-2016-0773)
CVE-2016-0766: Privilege escalation by changing PL/Java config settings.
CVE-2016-0773: Case insensitive range handling integer overflow leading to buffer overflow.
Fixed in version:
postgresql 9.5.1, postgresql 9.4.6, postgresql 9.3.11
References:
http://www.postgresql.org/about/news/1644/
http://www.postgresql.org/docs/current/static/release-9-5-1.html
(from redmine: issue id 5122, created on 2016-02-16, closed on 2016-02-16)
- Relations:
- parent #5118 (closed)
- Changesets:
- Revision de54eeef on 2016-02-16T15:33:42Z:
main/postgresql: security upgrade to 9.3.11 (CVE-2016-0766, CVE-2016-0773). Fixes #5122