Secunia Security Advisory - SUSE has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service).
f9109eb6579a593ed488cb80a9fae06723bbd66b1ae9f0d7a0e0a129ab189374
----------------------------------------------------------------------
A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI
has been released. The new version includes many new and advanced
features, which makes it even easier to stay patched.
Download and test it today:
https://psi.secunia.com/
Read more about this new version:
https://psi.secunia.com/?page=changelog
----------------------------------------------------------------------
TITLE:
SUSE update for postgresql
SECUNIA ADVISORY ID:
SA28698
VERIFY ADVISORY:
http://secunia.com/advisories/28698/
CRITICAL:
Less critical
IMPACT:
Privilege escalation, DoS
WHERE:
>From local network
OPERATING SYSTEM:
openSUSE 10.3
http://secunia.com/product/16124/
openSUSE 10.2
http://secunia.com/product/13375/
SUSE Linux 10.1
http://secunia.com/product/10796/
SUSE Linux Enterprise Server 10
http://secunia.com/product/12192/
SUSE Linux Enterprise Server 9
http://secunia.com/product/4118/
SOFTWARE:
Novell Open Enterprise Server
http://secunia.com/product/4664/
DESCRIPTION:
SUSE has issued an update for postgresql. This fixes some
vulnerabilities, which can be exploited by malicious users to gain
escalated privileges or cause a DoS (Denial of Service).
For more information:
SA28359
SOLUTION:
Apply updated packages.
x86 Platform:
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-8.1.11-0.1.i586.rpm
624c06933db930026d901e78690d1277
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-contrib-8.1.11-0.1.i586.rpm
2fea0ec0460fd5e6e02cba0e7aa3e71a
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-devel-8.1.11-0.1.i586.rpm
8f1093cf0d2333523fa79fa54bd567a1
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-docs-8.1.11-0.1.i586.rpm
25e0ff2162deaba0511629edce5b9e59
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-libs-8.1.11-0.1.i586.rpm
491d8e8441e751075051ec0c92372af6
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-pl-8.1.11-0.1.i586.rpm
37ce5f150abcb2f41e7aea284ce418b9
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-server-8.1.11-0.1.i586.rpm
29b7ccb1170b9b0375ae8cf5dd950022
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-8.1.11-0.2.i586.rpm
ca8cff05af0f9ae906e7b299d8a75e30
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-contrib-8.1.11-0.2.i586.rpm
b30b9ac4f0608f42710e824a1e9ca616
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-devel-8.1.11-0.2.i586.rpm
5ebebfb8e624844249991a88c1779d3e
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-docs-8.1.11-0.2.i586.rpm
a7aced11c432dd6a9f2a6c1cbbde986e
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-libs-8.1.11-0.2.i586.rpm
d688d75f85000483855e26273a7bd8f6
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-pl-8.1.11-0.2.i586.rpm
dc8288796c5cd3c85ca87d38ba5eac41
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-server-8.1.11-0.2.i586.rpm
735ac4ae47d318ce8084943f0e63743f
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-8.2.6-0.1.i586.rpm
00cb38130dc9179a9396a1d7ae389422
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-contrib-8.2.6-0.1.i586.rpm
11554adcb0ffec043a29af35aa08126e
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-devel-8.2.6-0.1.i586.rpm
d375e029250178b3eca19655fbe43d78
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-docs-8.2.6-0.1.i586.rpm
849b1a0df9b666b00ac54bf288b7930e
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-libs-8.2.6-0.1.i586.rpm
0c1b6c3f2aa3650ae4b37e62e794eb06
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-plperl-8.2.6-0.1.i586.rpm
b522126d99c3d686bd6cdfa0aaa9b332
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-plpython-8.2.6-0.1.i586.rpm
7d7f3cd85106f2490d9cd1cd547220a8
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-pltcl-8.2.6-0.1.i586.rpm
75faad90f8a9f9feb6d705152491b038
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-server-8.2.6-0.1.i586.rpm
aeb7de86d1cd4ff18cb2fdb0dc72eb88
Power PC Platform:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-8.2.6-0.1.ppc.rpm
238620216c4f56f1837c93a3bceb2193
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-contrib-8.2.6-0.1.ppc.rpm
e6af80526bb896f40dbdc17799389383
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-devel-8.2.6-0.1.ppc.rpm
65d562690f324e4ddb27db3d9c08121a
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-docs-8.2.6-0.1.ppc.rpm
e19410915a992b190dbd3a27d17fd91a
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-libs-64bit-8.2.6-0.1.ppc.rpm
e8ce8ffdbb9a6d0476a4d55332befc9f
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-libs-8.2.6-0.1.ppc.rpm
dc1f737087bf46cfc301444442fe3be7
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-plperl-8.2.6-0.1.ppc.rpm
cddb722e40f486c6a06a9deaaeae3a75
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-plpython-8.2.6-0.1.ppc.rpm
81ed782a8a091cbe059e22a96a45f6a7
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-pltcl-8.2.6-0.1.ppc.rpm
caeddb7cf96457b5789f80a800458b9f
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-server-8.2.6-0.1.ppc.rpm
8dc0269ce9ac9097d5498c2d7e5b9a8c
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-8.1.11-0.1.ppc.rpm
b487f7a7c4c4e25c647f6f2b20a87430
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-contrib-8.1.11-0.1.ppc.rpm
edab86333ff29d7eb2537bb9ae0da4fe
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-devel-8.1.11-0.1.ppc.rpm
38018f33ce89e823dd4eed7bc342a0ad
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-docs-8.1.11-0.1.ppc.rpm
54de6d3a75bf698b97eab9e530e1c02a
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-libs-64bit-8.1.11-0.1.ppc.rpm
fb4afdb8a5dcb9a504694b714eacd4c5
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-libs-8.1.11-0.1.ppc.rpm
bff14c7d3ecc7d86ddd681a016223ed7
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-pl-8.1.11-0.1.ppc.rpm
2f9a3605c2f126eaf81342f82dc7b91e
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-server-8.1.11-0.1.ppc.rpm
819bb10e8753d58c9158c53df1d438c6
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-8.1.11-0.2.ppc.rpm
308af421fa28c9d47dacedca7da007c8
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-contrib-8.1.11-0.2.ppc.rpm
58a60912276680d2da5154c3336b3c6b
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-devel-8.1.11-0.2.ppc.rpm
b495afbb35d172952ce975cd5ada9556
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-docs-8.1.11-0.2.ppc.rpm
907cbe77ca867d7d219e12f96ac2ac6a
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-libs-64bit-8.1.11-0.2.ppc.rpm
bd770d27e591127d8d7d0d103beeca2e
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-libs-8.1.11-0.2.ppc.rpm
2ea20f78e2b9ede2c9f7ccfd342c19e2
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-pl-8.1.11-0.2.ppc.rpm
4ad533395969b65948ec904d9addd732
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-server-8.1.11-0.2.ppc.rpm
4aee45a5797ba1e4d7440a9e372494e7
ppc64:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc64/postgresql-8.2.6-0.1.ppc64.rpm
38a59541ba2f810ef84c67167e4597fb
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc64/postgresql-8.1.11-0.1.ppc64.rpm
03b31cd33a5ad4dc1df5a9178465660c
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc64/postgresql-8.1.11-0.2.ppc64.rpm
d956a938adbd6027f00be58ca0e4efc4
x86-64 Platform:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-8.2.6-0.1.x86_64.rpm
a583ee42037a580ae5860797246bc4f8
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-contrib-8.2.6-0.1.x86_64.rpm
3e6504d36513c3e3f09000f6e8102396
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-devel-8.2.6-0.1.x86_64.rpm
c0e6160ddbf9726cd7292d72d2098e38
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-docs-8.2.6-0.1.x86_64.rpm
d220202e29b13827d1ea7865be0002b9
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-libs-32bit-8.2.6-0.1.x86_64.rpm
9a1c6c4d94509cb4799599b1f60273ec
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-libs-8.2.6-0.1.x86_64.rpm
b9104f37c464d6b7ee0bd357f791cfd9
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-plperl-8.2.6-0.1.x86_64.rpm
6abdea32f0917412be7c8210f6baf7aa
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-plpython-8.2.6-0.1.x86_64.rpm
f08a4daabf073cd7194135944f9006ea
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-pltcl-8.2.6-0.1.x86_64.rpm
1947520e9a26086fba02f7e4b3e69f58
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-server-8.2.6-0.1.x86_64.rpm
325678a14a968e640d4332e09702b7d3
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-8.1.11-0.1.x86_64.rpm
233d0e302e00b723b4de37953e1bc24e
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-contrib-8.1.11-0.1.x86_64.rpm
9123ce2e9e281bebc192e35ee54b401d
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-devel-8.1.11-0.1.x86_64.rpm
4f6608e0d3dbf3979a39d3d1ef25cbe3
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-docs-8.1.11-0.1.x86_64.rpm
5f4e4d88fb39d4b75e01c981ca5fc75a
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-libs-32bit-8.1.11-0.1.x86_64.rpm
60d07f55029dc754eaaecdb938a78b0b
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-libs-8.1.11-0.1.x86_64.rpm
13d868856f80ff90d0b6976f87054b03
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-pl-8.1.11-0.1.x86_64.rpm
a0aef5a6ae9d023f58ba2281e6652378
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-server-8.1.11-0.1.x86_64.rpm
c06e8b6c3d7a30094d189cb13796b877
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-8.1.11-0.2.x86_64.rpm
d31a394742741fbcb19c3c803fd2dcad
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-contrib-8.1.11-0.2.x86_64.rpm
123dbfaccfc332239a51fa167502c0a6
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-devel-8.1.11-0.2.x86_64.rpm
f32f2ae49dca837e2e7f74dc8b6dc68a
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-docs-8.1.11-0.2.x86_64.rpm
18cd9c9828a74c84812e89e9968a5396
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-libs-32bit-8.1.11-0.2.x86_64.rpm
27dcd0635ddbc0f95bf5836c08f412b1
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-libs-8.1.11-0.2.x86_64.rpm
6110f8ecb0f3944c33e8bf774a43489c
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-pl-8.1.11-0.2.x86_64.rpm
fc548ad37acbfbfe31e37914a31b17b5
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-server-8.1.11-0.2.x86_64.rpm
0c3f6ec33ba855f418d9d6dfe2157e8c
Sources:
openSUSE 10.3:
http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/postgresql-8.2.6-0.1.src.rpm
070b29f358f9702359b7cad930f6981c
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/postgresql-8.1.11-0.1.src.rpm
a0d163f33f258f7023ae184118646c86
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/postgresql-pl-8.1.11-0.1.nosrc.rpm
f12d10a9a791eb21a72c584d730307d1
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/postgresql-8.1.11-0.2.src.rpm
4fd97fc82138eefa33188b1cedde7dff
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/postgresql-pl-8.1.11-0.2.nosrc.rpm
a57864cea54813942584b2bbf60a48fd
Open Enterprise Server
http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html
Novell Linux POS 9
http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html
Novell Linux Desktop 9
http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html
SUSE SLES 9
http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html
SUSE Linux Enterprise Server 10 SP1
http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html
SLE SDK 10 SP1
http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html
SUSE Linux Enterprise Desktop 10 SP1
http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html
ORIGINAL ADVISORY:
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html
OTHER REFERENCES:
SA28359:
http://secunia.com/advisories/28359/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------