Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Patches » SUSE-2016:12409

Overview

Id SUSE-2016:12409
Name Novell SUSE 2016:12409 postgreqsql94-20160120 security update for SLE 11 x86_64
Vendor Name novell
Product None
Content Type Critical - 01 Critical - 01
Language(s)
Operating System(s) Linux 
Released On 16 Feb 2016 12:00:00

SUSE-2016:12409

Novell SUSE 2016:12409 postgreqsql94-20160120 security update for SLE 11 x86_64

Vendor Name

novell

Product

None

Released On

16 Feb 2016 12:00:00

Url

http://www.novell.com/support

Description

LSAC(v2)
This update of postgresql94 to 9.4.5 fixes the following issues: * CVE-2015-5289: json or jsonb input values constructed from arbitrary user input could have crashed the PostgreSQL server and caused a denial of service (bsc#949670) * CVE-2015-5288: crypt() (pgCrypto extension) couldi potentially be exploited to read a few additional bytes of memory (bsc#949669) Also contains all changes and bugfixes in the upstream 9.4.5 release: http://www.postgresql.org/docs/current/static/release-9-4-5.html

Related Resources

Related Vulnerabilities

None

Related Patches

Superseded Patches

None


Last Updated: 27 May 2016 11:23:16