Univention Bugzilla – Bug 49991
postgresql-9.6: Multiple issues (4.4)
Last modified: 2019-08-14 16:35:26 CEST
New Debian postgresql-9.6 9.6.15-0+deb9u1 fixes: This update addresses the following issue: * TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution (CVE-2019-10208)
--- mirror/ftp/4.4/unmaintained/4.4-1/source/postgresql-9.6_9.6.13-0+deb9u1.dsc +++ apt/ucs_4.4-0-errata4.4-1/source/postgresql-9.6_9.6.15-0+deb9u1.dsc @@ -1,3 +1,21 @@ +9.6.15-0+deb9u1 [Thu, 08 Aug 2019 15:55:21 +0200] Christoph Berg <myon@debian.org>: + + * New upstream security release. + + Fixes regression in ALTER TABLE on multiple columns. (Closes: #932247) + + + Require schema qualification to cast to a temporary type when using + functional cast syntax (Noah Misch) + + We have long required invocations of temporary functions to explicitly + specify the temporary schema, that is pg_temp.func_name(args). Require + this as well for casting to temporary types using functional notation, + for example pg_temp.type_name(arg). Otherwise it's possible to capture a + function call using a temporary object, allowing privilege escalation in + much the same ways that we blocked in CVE-2007-2138. (CVE-2019-10208) + + * On purge, ask the user if they want to remove clusters. + (Closes: #911940, #933368) + 9.6.13-0+deb9u1 [Tue, 07 May 2019 12:51:42 +0200] Christoph Berg <myon@debian.org>: * New upstream version. <http://10.200.17.11/4.4-1/#2194203326613086165>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-1] fdd1dff5ae Bug #49991: postgresql-9.6 9.6.15-0+deb9u1 doc/errata/staging/postgresql-9.6.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<http://errata.software-univention.de/ucs/4.4/226.html>