projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 633f2f5) | patch
postgresql: security bump to version 9.4.5
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Thu, 8 Oct 2015 18:59:12 +0000 (15:59 -0300)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Fri, 9 Oct 2015 13:24:34 +0000 (15:24 +0200)
commit4cab124a0b1b7504e50fd02357022cdad1a61865
tree180d71f044bd9af27c83d1b8e0f768883d9e36eftree
parent633f2f570a342cbb68a1b9147c7d5d68d429c2fbcommit | diff
postgresql: security bump to version 9.4.5

Fixes:

CVE-2015-5289: json or jsonb input values constructed from arbitrary
user input can crash the PostgreSQL server and cause a denial of
service.

CVE-2015-5288: The crypt() function included with the optional pgCrypto
extension could be exploited to read a few additional bytes of memory.
No working exploit for this issue has been developed.

sparc build fix patch upstream so drop it.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Reviewed-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Tested-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/postgresql/0002-fix-sparc-compile.patch [deleted file] blob | history
package/postgresql/postgresql.hash diff | blob | history
package/postgresql/postgresql.mk diff | blob | history