Publishing details

Published on 2017-11-09
Copied from ubuntu trusty in PPA for Ubuntu Security Proposed by Marc Deslauriers

Changelog

postgresql-common (154ubuntu1.1) trusty-security; urgency=medium

  * SECURITY UPDATE: symlink attack vulnerability
    - drop privileges when creating log file in pg_ctlcluster.
    - c8989206ec360f199400c74f129f7b4cb878c1ee
    - CVE-2016-1255
  * SECURITY UPDATE: symlink attack vulnerability in init/helper scripts
    (LP: #1727209)
    - use lchown instead of chown in pg_createcluster, pg_ctlcluster,
      pg_upgradecluster.
    - 8b4d0a889a8287181c4bdf46462db9b737a6e25d
    - No CVE number

 -- Marc Deslauriers <email address hidden>  Wed, 08 Nov 2017 08:22:48 -0500

Available diffs

diff from 154ubuntu1 (in Ubuntu) to 154ubuntu1.1 (2.0 KiB)
diff from 154 (in Debian) to 154ubuntu1.1 (2.8 KiB)

Builds

i386

Built packages

postgresql object-relational SQL database (supported version)

postgresql-client front-end programs for PostgreSQL (supported version)

postgresql-client-common manager for multiple PostgreSQL client versions

postgresql-common PostgreSQL database-cluster manager

postgresql-contrib additional facilities for PostgreSQL (supported version)

postgresql-doc documentation for the PostgreSQL database management system

postgresql-server-dev-all extension build tool for multiple PostgreSQL versions

Package files

postgresql-client-common_154ubuntu1.1_all.deb (24.9 KiB)
postgresql-client_9.3+154ubuntu1.1_all.deb (4.9 KiB)
postgresql-common_154ubuntu1.1.dsc (2.2 KiB)
postgresql-common_154ubuntu1.1.tar.gz (166.3 KiB)
postgresql-common_154ubuntu1.1_all.deb (100.6 KiB)
postgresql-contrib_9.3+154ubuntu1.1_all.deb (4.9 KiB)
postgresql-doc_9.3+154ubuntu1.1_all.deb (4.9 KiB)
postgresql-server-dev-all_154ubuntu1.1_all.deb (8.0 KiB)
postgresql_9.3+154ubuntu1.1_all.deb (4.9 KiB)