postgresql92-postgresql-9.2.18-1.AXS4
エラータID: AXSA:2016-655:02
リリース日:
2016/09/08 Thursday - 15:39
題名:
postgresql92-postgresql-9.2.18-1.AXS4
影響のあるチャネル:
Asianux Server 4 for x86_64
Severity:
Moderate
Description:
[修正内容]
以下項目について対処しました。
[Security Fix]
- 現時点では CVE-2016-5423, CVE-2016-5424 の情報が公開されておりません。
CVE の情報が公開され次第情報をアップデートいたします。
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2016-5423
PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 allow remote authenticated users to cause a denial of service (NULL pointer dereference and server crash), obtain sensitive memory information, or possibly execute arbitrary code via (1) a CASE expression within the test value subexpression of another CASE or (2) inlining of an SQL function that implements the equality operator used for a CASE expression involving values of different types.
PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 allow remote authenticated users to cause a denial of service (NULL pointer dereference and server crash), obtain sensitive memory information, or possibly execute arbitrary code via (1) a CASE expression within the test value subexpression of another CASE or (2) inlining of an SQL function that implements the equality operator used for a CASE expression involving values of different types.
CVE-2016-5424
PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) " (double quote), (2) \ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.
PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) " (double quote), (2) \ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.
追加情報:
N/A
ダウンロード:
SRPMS
- postgresql92-postgresql-9.2.18-1.AXS4.src.rpm
MD5: 6dc9b000f286f08a58401da988e05d9b
SHA-256: 27470f8bea9c011267c8ca8c22d68699c1f608f11411581c490cda17c74a4ce0
Size: 22.16 MB
Asianux Server 4 for x86_64
- postgresql92-postgresql-9.2.18-1.AXS4.x86_64.rpm
MD5: dfaf51aa6f7f904b29ad49c9feb9b5c2
SHA-256: c507f4bd015e7d6c154819d5c595084eaa7e1041e98564082408a1fd0dba01a6
Size: 2.92 MB - postgresql92-postgresql-contrib-9.2.18-1.AXS4.x86_64.rpm
MD5: fea9a18ab8f6984c4d2ac3137a733c1d
SHA-256: d8f1b4d0ce13bc15dfe8bf90d814aa502f4872b2f601d0044aabf82186bbc9e8
Size: 455.02 kB - postgresql92-postgresql-devel-9.2.18-1.AXS4.x86_64.rpm
MD5: ac1fea6f3206b9089605a49efd67994d
SHA-256: a1c5a6b70448b69b996460325272af4a3610229f417ae0779ec327c4134af32f
Size: 946.62 kB - postgresql92-postgresql-docs-9.2.18-1.AXS4.x86_64.rpm
MD5: 850a57135cecfe27657c6c6a4dfe6d42
SHA-256: c1147eb2eac2dcec0e8f2cca63606359634e0085ccbfe5324f2713e90655962f
Size: 6.82 MB - postgresql92-postgresql-libs-9.2.18-1.AXS4.x86_64.rpm
MD5: 40ea59a8b5b1b4f34bbf2a5a3104b6dd
SHA-256: 7f467818a95367ec8d2b0c0291f0eb06985330c17476fc17096bfabd59ac8502
Size: 220.90 kB - postgresql92-postgresql-plperl-9.2.18-1.AXS4.x86_64.rpm
MD5: 757fdb9063c0825cfb029a4370032769
SHA-256: a49c59ebd5ae959f2553ba0719b8183c8c70e67bc87994777f01320b46561322
Size: 82.34 kB - postgresql92-postgresql-plpython-9.2.18-1.AXS4.x86_64.rpm
MD5: 14ef60cc38a5897eadadd0c5ad15b11f
SHA-256: b64f90b8f51d6ff6198e365b46b4daa7d46ae1bcdd097c8a60c009b5a8cd9c0b
Size: 93.15 kB - postgresql92-postgresql-pltcl-9.2.18-1.AXS4.x86_64.rpm
MD5: 4acc23c0a4df803a39724c7087e0092f
SHA-256: a6f800361defc5a8686ff9cddbe6969533bf6209251d5f8dc83a45097a594972
Size: 57.19 kB - postgresql92-postgresql-server-9.2.18-1.AXS4.x86_64.rpm
MD5: df7bc7caa432e5a95e27512298aca0fa
SHA-256: c113e5efc205e4dda4c221d11eb2f6b60e78dbb20422f69898f6d35aad8661a9
Size: 4.24 MB - postgresql92-postgresql-test-9.2.18-1.AXS4.x86_64.rpm
MD5: b0fbb2d375689fdeaed83b8377550272
SHA-256: 9dc9be1a23350d5588e42c7ca6cc78f73114f132799c9aa5b458e90b6cb636ee
Size: 2.00 MB - postgresql92-postgresql-upgrade-9.2.18-1.AXS4.x86_64.rpm
MD5: 1d314957590811f17d9e13356b93d9cb
SHA-256: e7393e5889c96d4c8f025fe6c8dc715cf2a8c1b6a35e7a9d4f15f1256ecc2d91
Size: 75.23 kB
English