postgresql: security update to 11.5 #1953

KexyBiscuit · 2019-08-09T09:43:32Z

CVE IDs: CVE-2019-10208, CVE-2019-10209

Other security advisory IDs: DSA-4493-1, USN-4090-1, ASA-201908-8, MGASA-2019-0225

Descriptions: TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution

Memory disclosure in cross-type comparison for hashed subplan

Patches: N/A

PoC(s): N/A

Architectural progress:

The text was updated successfully, but these errors were encountered:

MingcongBai · 2020-04-20T05:38:32Z

All done. @l2dy Please assign an AOSA.

l2dy · 2020-04-20T11:01:42Z

Use AOSA-2020-0049.

KexyBiscuit added security Topic/issue involves a security issue/fixed to-stable labels Aug 9, 2019

KexyBiscuit added this to the Summer 2019 milestone Aug 9, 2019

KexyBiscuit self-assigned this Aug 9, 2019

KexyBiscuit added a commit that referenced this issue Aug 9, 2019

postgresql: update to 11.5, #1953

8aed08b

KexyBiscuit mentioned this issue Aug 9, 2019

[FROZEN] Iteration Plan for Summer 2019 #1896

Closed

MingcongBai added the upgrade Topic/issue involves a package upgrade label Apr 20, 2020

MingcongBai closed this as completed Apr 20, 2020

Provide feedback