sdk-postgresql

Security update for PostgreSQL

Security update for PostgreSQL

The SQL Server PostgreSQL has been updated to fix the following security problems: CVE-2006-5540: backend/parser/analyze.c in PostgreSQL 8.1.x allowed remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization." CVE-2006-5541: backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY. CVE-2006-5542: backend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) related to duration logging of V3-protocol Execute messages for (1) COMMIT and (2) ROLLBACK SQL statements. The SQL Server PostgreSQL has been updated to fix the following security problems: CVE-2006-5540: backend/parser/analyze.c in PostgreSQL 8.1.x allowed remote authenticated users to cause a denial of service (daemon crash) via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization." CVE-2006-5541: backend/parser/parse_coerce.c in PostgreSQL 7.4.1 through 7.4.14, 8.0.x before 8.0.9, and 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) via a coercion of an unknown element to ANYARRAY. CVE-2006-5542: backend/tcop/postgres.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service (daemon crash) related to duration logging of V3-protocol Execute messages for (1) COMMIT and (2) ROLLBACK SQL statements. security postgresql x86_64 7c7477ff1d4e54d50522f716f3398c002445bb97 postgresql-devel x86_64 cdfd270d39e0d0b97368f9c2595f03ab59af9024 postgresql-server x86_64 59bbf24498f0279f4c1c7cd3a16f3bf7ccc1c4bc