Univention Bugzilla – Bug 40716
postgresql-9.1: Multiple issues (4.0)
Last modified: 2019-04-11 19:25:07 CEST
Upstream Debian package version 9.1.20-0+deb7u1 fixes these issues: * Attackers may cause denial of service (server crash) or read arbitrary server memory via "too-short" crypt salts (CVE-2015-5288) * Privilege escalation vulnerability for users of PL/Java (CVE-2016-0766) * Denial of service and potential execution of arbitrary code due to buffer overrun in PL/Java regular expression processing (CVE-2016-0773)
UCS 4.0 is out of maintenance. See Depends field for the UCS 4.1 specific bug.