Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Evergreen:Maintenance:253
patchinfo
_patchinfo
Overview
Details
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo
<patchinfo incident="postgresql"> <packager>lijews</packager> <issue tracker="cve" id="CVE-2014-0060"></issue> <issue tracker="cve" id="CVE-2014-0061"></issue> <issue tracker="cve" id="CVE-2014-0062"></issue> <issue tracker="cve" id="CVE-2014-0063"></issue> <issue tracker="cve" id="CVE-2014-0064"></issue> <issue tracker="cve" id="CVE-2014-0065"></issue> <issue tracker="cve" id="CVE-2014-0066"></issue> <issue tracker="cve" id="CVE-2014-0067"></issue> <issue tracker="bnc" id="864853">VUL-0: CVE-2014-0066: postgresql: NULL pointer dereference</issue> <issue tracker="bnc" id="864852">VUL-0: CVE-2014-0065: postgresql: possible buffer overflow flaws</issue> <issue tracker="bnc" id="864851">VUL-0: CVE-2014-0064: postgresql: integer overflows leading to buffer overflows</issue> <issue tracker="bnc" id="864850">VUL-0: CVE-2014-0063: postgresql: stack-based buffer overflow in datetime input/output</issue> <issue tracker="bnc" id="864847">VUL-0: CVE-2014-0062: postgresql: CREATE INDEX race condition possibly leading to privilege escalation</issue> <issue tracker="bnc" id="864846">VUL-0: CVE-2014-0061: postgresql: privilege escalation via procedural language validator functions</issue> <issue tracker="bnc" id="864845">VUL-0: CVE-2014-0060: postgresql: SET ROLE without ADMIN OPTION allows adding and removing group</issue> <category>security</category> <rating>moderate</rating> <summary>postgresql: updates to 9.0.16 security release</summary> <description>- Security and bugfix release 9.0.16: *Shore up GRANT ... WITH ADMIN OPTION restrictions (CVE-2014-0060) *Prevent privilege escalation via manual calls to PL validator functions (CVE-2014-0061) *Avoid multiple name lookups during table and index DDL (CVE-2014-0062) *Prevent buffer overrun with long datetime strings (CVE-2014-0063) *Prevent buffer overrun due to integer overflow in size calculations (CVE-2014-0064) *Prevent overruns of fixed-size buffers (CVE-2014-0065) *Avoid crashing if crypt() returns NULL (CVE-2014-0066) *Document risks of make check in the regression testing instructions (CVE-2014-0067) - for details see: http://www.postgresql.org/docs/9.0/static/release-9-0-16.html </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor