sledp3-postgresql

Security update for PostgreSQL

Security update for PostgreSQL

The following bugs have been fixed: An unprivileged, authenticated PostgreSQL user could create a table which references functions with malicious content. Maintenance operations carried out be the database superuser could execute such functions (CVE-2009-4136). Embedded null bytes in the common name of SSL certificates could bypass certificate hostname checks (CVE-2009-4034). PostgreSQL was updated to the next upstream patchlevel update which also includes several bugfixes. See the package changelog for details. An unprivileged, authenticated PostgreSQL user could create a table which references functions with malicious content. Maintenance operations carried out be the database superuser could execute such functions (CVE-2009-4136). Embedded null bytes in the common name of SSL certificates could bypass certificate hostname checks (CVE-2009-4034). postgresql was updated to the next upstream patchlevel update which also includes several bugfixes. See the package changelog for details. security postgresql-devel x86_64 b7a95226ce80fc0c49ee564d7aac65199904c35f postgresql-libs x86_64 82f833c9efeb8dfa8dfab572614b319902422ddb postgresql-libs-32bit x86_64 5c34a44d4fed267a0a89f0dcad19193e8a566d89