Oval Definition:oval:org.opensuse.security:def:78179
Revision Date:2015-06-24Version:1
Title:Security update for postgresql93 (Moderate)
Description:



PostgreSQL was updated to the security and bugfix release 9.3.8 including 9.3.7.

Security issues fixed:

CVE-2015-3165, bsc#931972: Avoid possible crash when client disconnects just before the authentication timeout expires. * CVE-2015-3166, bsc#931973: Consistently check for failure of the printf() family of functions. * CVE-2015-3167, bsc#931974: In contrib/pgcrypto, uniformly report decryption failures as 'Wrong key or corrupt data'

Bugs fixed:

Protect against wraparound of multixact member IDs. * Avoid failures while fsync'ing data directory during crash restart. * Fix pg_get_functiondef() to show functions' LEAKPROOF property, if set. * Allow libpq to use TLS protocol versions beyond v1.

- For the full release notes, see the following two URLs http://www.postgresql.org/docs/9.3/static/release-9-3-8.html http://www.postgresql.org/docs/9.3/static/release-9-3-7.html
Family:unixClass:patch
Status:Reference(s):931972
931973
931974
CVE-2015-3165
CVE-2015-3166
CVE-2015-3167
SUSE-SU-2015:1264-1
Platform(s):SUSE Linux Enterprise Desktop 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libecpg6-9.3.8-8.1 is installed
  • OR libpq5-9.3.8-8.1 is installed
  • OR libpq5-32bit-9.3.8-8.1 is installed
  • OR postgresql93-9.3.8-8.1 is installed
    • BACK