postgresql: Security issues (CVE-2016-0766, CVE-2016-0773)
CVE-2016-0766: Privilege escalation by changing PL/Java config settings.
CVE-2016-0773: Case insensitive range handling integer overflow leading to buffer overflow.
Fixed in version:
postgresql 9.5.1, postgresql 9.4.6, postgresql 9.3.11
References:
http://www.postgresql.org/about/news/1644/
http://www.postgresql.org/docs/current/static/release-9-5-1.html
(from redmine: issue id 5118, created on 2016-02-16, closed on 2016-02-16)
- Relations:
- child #5119 (closed)
- child #5120 (closed)
- child #5121 (closed)
- child #5122 (closed)