Revision Date: | 2016-02-16 | Version: | 1 |
Title: | Security update for postgresql94 (Moderate) |
Description: |
This update of postgresql94 to 9.4.5 fixes the following issues:
CVE-2015-5289: json or jsonb input values constructed from arbitrary user input could have crashed the PostgreSQL server and caused a denial of service (bsc#949670) * CVE-2015-5288: crypt() (pgCrypto extension) couldi potentially be exploited to read a few additional bytes of memory (bsc#949669)
Also contains all changes and bugfixes in the upstream 9.4.5 release: http://www.postgresql.org/docs/current/static/release-9-4-5.html
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 949669 949670 CVE-2015-5288 CVE-2015-5289 SUSE-SU-2016:0482-1
|
Platform(s): | SUSE Linux Enterprise Desktop 11 SP4
| Product(s): | |
Definition Synopsis |
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information
libecpg6-9.4.5-0.8.3 is installed
OR libpq5-9.4.5-0.8.3 is installed
OR libpq5-32bit-9.4.5-0.8.3 is installed
OR postgresql94-9.4.5-0.8.3 is installed
OR postgresql94-docs-9.4.5-0.8.3 is installed
|