K 10
svn:author
V 6
girgen
K 8
svn:date
V 27
2007-02-05T15:41:25.000000Z
K 7
svn:log
V 915
Update PostgreSQL with, amongst other things, two security fixes:

  A vulnerability allows suppressing the normal checks that a SQL
  function returns the data type it's declared to do. These errors can
  easily be exploited to cause a backend crash, and in principle might
  be used to read database content that the user should not be able to
  access. [CVE-2007-0555]

  A vulnerability involving changing the data type of a table column
  can easily be exploited to cause a backend crash, and in principle
  might be used to read database content that the user should not be
  able to access. [CVE-2007-0556]

The release includes a set of other fixes as well. Please see the
release information at
http://www.postgresql.org/docs/8.0/static/release.html#RELEASE-8-0-11

Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0555
Security: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0556

END