libpq-13.5-1.el8
エラータID: AXSA:2022-3378:01
The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.
Security Fix(es):
* postgresql: libpq processes unencrypted bytes from man-in-the-middle (CVE-2021-23222)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Asianux Server 8.6 Release Notes linked from the References section.
CVE-2021-23222
A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.
Update packages.
A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption.
N/A
SRPMS
- libpq-13.5-1.el8.src.rpm
MD5: a8ff0f7f7413066c0ca275c599ba7381
SHA-256: 0a61a0ca7a0e6c93c1b2629841fddcaf72ae189a1a3a586e74cdb80d20079546
Size: 20.13 MB
Asianux Server 8 for x86_64
- libpq-13.5-1.el8.x86_64.rpm
MD5: b1a9cd4dcb7e4550cd6266036dfc1ff5
SHA-256: 984df5a8bbb97d9d10c1f2416f256890cc2f24dd171b55d0b5b81b10d3e750d3
Size: 196.58 kB - libpq-devel-13.5-1.el8.x86_64.rpm
MD5: 6b1b48c055a1bff1dbd0678672cd30c1
SHA-256: 0e64f68a4c2f083c6a48313fcaa4248c2247b2fa50dc73242d04797b70eaba80
Size: 95.95 kB - libpq-13.5-1.el8.i686.rpm
MD5: 7cb916534693feed99e224fa6c6cf49f
SHA-256: f08e229af36b28dbf1c538ab6b83aecd6513578badbae039209dd2be1895a94e
Size: 206.47 kB - libpq-devel-13.5-1.el8.i686.rpm
MD5: 5674d48581dbd0d07f52edde2d79c81c
SHA-256: acfe8262fd07d61694249a307978912ee75a21f71aa402a891b1862ed0b74b0a
Size: 97.89 kB
日本語