[CLSA-2024:1707822783] Fix CVE(s): CVE-2023-5868, CVE-2023-5870
Type:
security
Severity:
Moderate
Release date:
2024-02-13 11:13:05 UTC
Description:
* SECURITY UPDATE: Memory disclosure in aggregate function calls - debian/patches/CVE-2023-5868.patch: Compute aggregate argument types correctly in transformAggregateCall(). - CVE-2023-5868 * SECURITY UPDATE: Role "pg_signal_backend" can signal certain superuser processes - debian/patches/CVE-2023-5870.patch: Ban role pg_signal_backend from more superuser backend. - CVE-2023-5870 -- Vladimir D. Seleznev Thu, 25 Jan 2024 21:31:25 +0200
Updated packages:
  • libecpg-compat3_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:57c0bf25cc24e08112a32774972ecd0759083b47
  • libecpg-dev_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:9efe962f1664a09ec3204716608823a5cf412221
  • libecpg6_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:9609b4993145eb766da321a28a88438d66fae4da
  • libpgtypes3_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:b5938cf1b375a216d50079c2e532f5c1a4da904b
  • libpq-dev_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:f0361e43c293b880593a9f1aeb807351ba061ce1
  • libpq5_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:0c26ac714defd8faa82b21a85c430c33d09bebc9
  • postgresql-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:cc21cf7554f9a598973e8d204e20c0c4dd3961f4
  • postgresql-client-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:35c102cbba801fa6ce4b35343dd1646ee9d6fd02
  • postgresql-doc-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_all.deb
    sha:150dc376d51deeca4756fb0a06d17bc997780cc1
  • postgresql-plperl-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:9857809e2f7f9f70011ab7308b92d434976217eb
  • postgresql-plpython-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:cfe522a62f9ed3db3e95e8f66926c756f26ebcff
  • postgresql-plpython3-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:fb37037ad0308da99ea4892d1adac9c33541c80b
  • postgresql-pltcl-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:ae6ad252d2357998563188ce4e41f01a151dde8e
  • postgresql-server-dev-10_10.23-0ubuntu0.18.04.2+tuxcare.els3_amd64.deb
    sha:d942bfaa5e53362052d9900c9b0804cd70f2ec19
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.