libpq-13.11-1.el9
エラータID: AXSA:2023-6851:01
The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers.
Security Fix(es):
* postgresql: Client memory disclosure when connecting with Kerberos to modified server (CVE-2022-41862)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2022-41862
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
Update packages.
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
N/A
SRPMS
- libpq-13.11-1.el9.src.rpm
MD5: e2b8774f28643bef051e20f28f722c46
SHA-256: 088cba5a443957cfc1e466deab3a65f5acb8560b9597b5df6c653324ec9cc94b
Size: 20.45 MB
Asianux Server 9 for x86_64
- libpq-13.11-1.el9.i686.rpm
MD5: bfb68c8ae185f81a3394630c4494a050
SHA-256: be1c8df2996aaedbe5b730b6bebb9833828eec7c27a624d7c3c04081a594dd52
Size: 209.15 kB - libpq-13.11-1.el9.x86_64.rpm
MD5: 1211c556be7d47f92e7b8674f0c6c4c8
SHA-256: f94f666df7dedaac7a0cb6c55f13ff6fc8faded071eb92eee5304249c7b2aa44
Size: 201.20 kB - libpq-devel-13.11-1.el9.i686.rpm
MD5: 154a512fe1b2f225418ddc2b98b81563
SHA-256: 6a9bacc241742f3d12558735229e83bc22f6edca31dcedd7b12c50b9f069ba7d
Size: 92.45 kB - libpq-devel-13.11-1.el9.x86_64.rpm
MD5: 8ea6e6685d9f7d19f007a35cda354594
SHA-256: 241cf490b8721ba9d2f4f3a027e4458816e636583c09d47d7b8d8b9f97a0925f
Size: 91.42 kB
日本語