Univention Bugzilla – Bug 55676
postgresql-11: Multiple issues (5.0)
Last modified: 2023-02-22 13:03:39 CET
New Debian postgresql-11 11.19-0+deb10u1 fixes: This update addresses the following issue: 11.18-0+deb10u1 (Wed, 09 Nov 2022 10:09:35 +0100) * New upstream version. * postgresql-11 (CVE-2022-41862)
--- mirror/ftp/pool/main/p/postgresql-11/postgresql-11_11.18-0+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-3/source/postgresql-11_11.19-0+deb10u1.dsc @@ -1,3 +1,20 @@ +11.19-0+deb10u1 [Tue, 07 Feb 2023 17:14:48 +0100] Christoph Berg <myon@debian.org>: + + * New upstream version. + + + libpq can leak memory contents after GSSAPI transport encryption + initiation fails (Jacob Champion) + + A modified server, or an unauthenticated man-in-the-middle, can send a + not-zero-terminated error message during setup of GSSAPI (Kerberos) + transport encryption. libpq will then copy that string, as well as + following bytes in application memory up to the next zero byte, to its + error report. Depending on what the calling application does with the + error report, this could result in disclosure of application memory + contents. There is also a small probability of a crash due to reading + beyond the end of memory. Fix by properly zero-terminating the server + message. (CVE-2022-41862) + 11.18-0+deb10u1 [Wed, 09 Nov 2022 10:09:35 +0100] Christoph Berg <myon@debian.org>: * New upstream version. <http://piuparts.knut.univention.de/5.0-3/#7927006292936268514>
OK: bug OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-3] 2a697d2357 Bug #55676: postgresql-11 11.19-0+deb10u1 doc/errata/staging/postgresql-11.yaml | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) [5.0-3] 1ffc824cdd Bug #55676: postgresql-11 11.19-0+deb10u1 doc/errata/staging/postgresql-11.yaml | 14 ++++++++++++++ 1 file changed, 14 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x581>