[SECURITY] Fedora 8 Update: postgresql-8.2.6-1.fc8

updates at fedoraproject.org updates at fedoraproject.org
Fri Jan 11 22:14:38 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-0478
2008-01-11 21:21:51
--------------------------------------------------------------------------------

Name        : postgresql
Product     : Fedora 8
Version     : 8.2.6
Release     : 1.fc8
URL         : http://www.postgresql.org/
Summary     : PostgreSQL client programs and libraries
Description :
PostgreSQL is an advanced Object-Relational database management system
(DBMS) that supports almost all SQL constructs (including
transactions, subselects and user-defined types and functions). The
postgresql package includes the client programs and libraries that
you'll need to access a PostgreSQL DBMS server.  These PostgreSQL
client programs are programs that directly manipulate the internal
structure of PostgreSQL databases on a PostgreSQL server. These client
programs can be located on the same machine with the PostgreSQL
server, or may be on a remote machine which accesses a PostgreSQL
server over a network connection. This package contains the docs
in HTML for the whole package, as well as command-line utilities for
managing PostgreSQL databases on a PostgreSQL server.

If you want to manipulate a PostgreSQL database on a remote PostgreSQL
server, you need this package. You also need to install this package
if you're installing the postgresql-server package.

--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan  7 2008 Tom Lane <tgl at redhat.com> 8.2.6-1
- Update to PostgreSQL 8.2.6 to fix CVE-2007-4769, CVE-2007-4772,
  CVE-2007-6067, CVE-2007-6600, CVE-2007-6601
- Make initscript and pam config files be installed unconditionally;
  seems new buildroots don't necessarily have those directories in place
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #427127 - CVE-2007-6600 PostgreSQL privilege escalation
        https://bugzilla.redhat.com/show_bug.cgi?id=427127
  [ 2 ] Bug #315231 - CVE-2007-4769 postgresql integer overflow in regex code
        https://bugzilla.redhat.com/show_bug.cgi?id=315231
  [ 3 ] Bug #427128 - CVE-2007-6601 PostgreSQL privilege escalation via dblink
        https://bugzilla.redhat.com/show_bug.cgi?id=427128
  [ 4 ] Bug #400931 - CVE-2007-6067 postgresql: tempory DoS caused by slow regex NFA cleanup
        https://bugzilla.redhat.com/show_bug.cgi?id=400931
  [ 5 ] Bug #427773 - CVE-2007-4769 CVE-2007-4772 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601 Multiple postgresql vulnerabilities [Fedora 8]
        https://bugzilla.redhat.com/show_bug.cgi?id=427773
  [ 6 ] Bug #316511 - CVE-2007-4772 postgresql DoS via infinite loop in regex NFA optimization code
        https://bugzilla.redhat.com/show_bug.cgi?id=316511
--------------------------------------------------------------------------------
Updated packages:

4d262bc6193e45c237a9d55280637cb5f0c4ab0b postgresql-debuginfo-8.2.6-1.fc8.ppc64.rpm
032d47ec7e230c443482cecb5c5dc4096750a4aa postgresql-test-8.2.6-1.fc8.ppc64.rpm
ff0ff36a35efa4576afd4d7a6c4fa4ded6bd79e9 postgresql-python-8.2.6-1.fc8.ppc64.rpm
524d95a205be7ff9d5ea285e78df961958387a8f postgresql-tcl-8.2.6-1.fc8.ppc64.rpm
9ff12f124b53035b5d9b9fb822cdef273a45a1d4 postgresql-pltcl-8.2.6-1.fc8.ppc64.rpm
ae84ba1e622b416474266159c0dcf1877ac18fc8 postgresql-plpython-8.2.6-1.fc8.ppc64.rpm
03464f876cd9ea1184a258a28d8eb5048b94bdd7 postgresql-plperl-8.2.6-1.fc8.ppc64.rpm
f460e3f1b5921a256967d1531d16b0292f28038d postgresql-devel-8.2.6-1.fc8.ppc64.rpm
8e3d7a0905c218e0a466c046c8f8ff04727655c4 postgresql-contrib-8.2.6-1.fc8.ppc64.rpm
31a18a4aa6d3b7c76166b48c739e401c53809cd0 postgresql-docs-8.2.6-1.fc8.ppc64.rpm
eb737343332f3b5722939b490a7dd5e0831d122a postgresql-server-8.2.6-1.fc8.ppc64.rpm
87069d4c12cba204dea1c000a33977586485ff32 postgresql-libs-8.2.6-1.fc8.ppc64.rpm
a2c96ae3dd3aed3ea232d388649197de8f2f0096 postgresql-8.2.6-1.fc8.ppc64.rpm
4feaf0e4915e91c129c07369b2a141871a510088 postgresql-plpython-8.2.6-1.fc8.i386.rpm
8c7990ae084cdf47910afe42b6238d4fcbbb4176 postgresql-8.2.6-1.fc8.i386.rpm
72c11e70c8d5d4a136a0a0b8821a15cb231b42bb postgresql-libs-8.2.6-1.fc8.i386.rpm
ca30826cf9b685f01cabd9d980cf48a1e802c11f postgresql-plperl-8.2.6-1.fc8.i386.rpm
d5682f86429f6fbf94c9496353c073060eaccf30 postgresql-pltcl-8.2.6-1.fc8.i386.rpm
dad239493dc93e1fabb5e2f81d5d75846be1dfbd postgresql-python-8.2.6-1.fc8.i386.rpm
ad5c1c9e08699c6d5e7ee8eb0c1a00056a2ea494 postgresql-server-8.2.6-1.fc8.i386.rpm
d93d02ecf78a34907a62dee1cabbbaee2e807b3b postgresql-tcl-8.2.6-1.fc8.i386.rpm
7dadea77268a0ef672d7eb108653cd6bd8ab315b postgresql-test-8.2.6-1.fc8.i386.rpm
aba4612f4a7158b0ba48a9425a803ba1546cfad9 postgresql-devel-8.2.6-1.fc8.i386.rpm
04d80a33689ef6b7a53e3cb95edb63e198f4c256 postgresql-docs-8.2.6-1.fc8.i386.rpm
7746e4a1d6b72ba55e9aa6b70328aaccb4cec165 postgresql-contrib-8.2.6-1.fc8.i386.rpm
33a01025135ca7db690e07ded7253a012dc88f89 postgresql-debuginfo-8.2.6-1.fc8.i386.rpm
1e035510366d3abb367e44da25f2dc4506af9214 postgresql-debuginfo-8.2.6-1.fc8.x86_64.rpm
e6432cfd1e2257a9523ab2d94d761300bbe256d2 postgresql-test-8.2.6-1.fc8.x86_64.rpm
208797bbc06889484ac2eb7f5aa61d8e41f682fe postgresql-python-8.2.6-1.fc8.x86_64.rpm
2b4830f2791263b211b8739ac530832baf977305 postgresql-tcl-8.2.6-1.fc8.x86_64.rpm
699506785a9c4b1a4d4be266dce3444f3df97d2a postgresql-pltcl-8.2.6-1.fc8.x86_64.rpm
3793a007028a4aa8a5fcae7f994ae3bf34480332 postgresql-plpython-8.2.6-1.fc8.x86_64.rpm
b5a5b875d247ca01dc3936688cc2ec7c7b47b615 postgresql-plperl-8.2.6-1.fc8.x86_64.rpm
72fad8c05012d017c7da8de3d0108238c3aa992d postgresql-devel-8.2.6-1.fc8.x86_64.rpm
24cf66cbe853092f3312dfa9e6bc5c245a5edeae postgresql-contrib-8.2.6-1.fc8.x86_64.rpm
951033dcfb678329e32d9f61d365d430933bb372 postgresql-docs-8.2.6-1.fc8.x86_64.rpm
a6987b7132cca04a77bf05f352eb100a684d5a46 postgresql-server-8.2.6-1.fc8.x86_64.rpm
bcdd042ef0c5d8c0f4531c643a53448c29c7e931 postgresql-libs-8.2.6-1.fc8.x86_64.rpm
c6fe7d7d21eec91a48aedfeb4e05c24d66e2f8ca postgresql-8.2.6-1.fc8.x86_64.rpm
628350fbab0abeb24df3f2d055148c36709323f0 postgresql-debuginfo-8.2.6-1.fc8.ppc.rpm
488be37c41c97c80370199af2b5ebceda5409764 postgresql-test-8.2.6-1.fc8.ppc.rpm
2b08ff83a96d7caddeb95eab76c2e9f9969ab6c1 postgresql-python-8.2.6-1.fc8.ppc.rpm
1c72cd15dde8fbee9c0b4cdd581574e8ac2bc900 postgresql-tcl-8.2.6-1.fc8.ppc.rpm
40ed08ae7d5940ac50b27a59b93084bcd1ccd306 postgresql-pltcl-8.2.6-1.fc8.ppc.rpm
8175571ef3ae863be9e4d9dad674046402e9e7a0 postgresql-plpython-8.2.6-1.fc8.ppc.rpm
398eeca0a05daaa1da9edf53d86711fb30af3d62 postgresql-plperl-8.2.6-1.fc8.ppc.rpm
9fc99a323d50aae5d4e26a79c087143532d54aca postgresql-devel-8.2.6-1.fc8.ppc.rpm
d438ce42f9926e6d483475c49bd2f12f5dd71501 postgresql-contrib-8.2.6-1.fc8.ppc.rpm
b36daf63c58de82d1778f46847c7bb286d57b44d postgresql-docs-8.2.6-1.fc8.ppc.rpm
a89d4697c6e6d9ba571a5f3c65ea334e00f04371 postgresql-server-8.2.6-1.fc8.ppc.rpm
cf31681ccf3a86af25fd358680043d0efd7cd22a postgresql-libs-8.2.6-1.fc8.ppc.rpm
74ed1f7dcc93f4cd9ce3c3d315c24ee6cd172a1c postgresql-8.2.6-1.fc8.ppc.rpm
b581ae1ca530f4f76f52291e191cec44bee666f2 postgresql-8.2.6-1.fc8.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update postgresql' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list