---------------------------------------------------------------------- A new version (0.9.0.0 - Release Candidate 1) of the free Secunia PSI has been released. The new version includes many new and advanced features, which makes it even easier to stay patched. Download and test it today: https://psi.secunia.com/ Read more about this new version: https://psi.secunia.com/?page=changelog ---------------------------------------------------------------------- TITLE: SUSE update for postgresql SECUNIA ADVISORY ID: SA28698 VERIFY ADVISORY: http://secunia.com/advisories/28698/ CRITICAL: Less critical IMPACT: Privilege escalation, DoS WHERE: >From local network OPERATING SYSTEM: openSUSE 10.3 http://secunia.com/product/16124/ openSUSE 10.2 http://secunia.com/product/13375/ SUSE Linux 10.1 http://secunia.com/product/10796/ SUSE Linux Enterprise Server 10 http://secunia.com/product/12192/ SUSE Linux Enterprise Server 9 http://secunia.com/product/4118/ SOFTWARE: Novell Open Enterprise Server http://secunia.com/product/4664/ DESCRIPTION: SUSE has issued an update for postgresql. This fixes some vulnerabilities, which can be exploited by malicious users to gain escalated privileges or cause a DoS (Denial of Service). For more information: SA28359 SOLUTION: Apply updated packages. x86 Platform: openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-8.1.11-0.1.i586.rpm 624c06933db930026d901e78690d1277 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-contrib-8.1.11-0.1.i586.rpm 2fea0ec0460fd5e6e02cba0e7aa3e71a ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-devel-8.1.11-0.1.i586.rpm 8f1093cf0d2333523fa79fa54bd567a1 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-docs-8.1.11-0.1.i586.rpm 25e0ff2162deaba0511629edce5b9e59 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-libs-8.1.11-0.1.i586.rpm 491d8e8441e751075051ec0c92372af6 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-pl-8.1.11-0.1.i586.rpm 37ce5f150abcb2f41e7aea284ce418b9 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/postgresql-server-8.1.11-0.1.i586.rpm 29b7ccb1170b9b0375ae8cf5dd950022 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-8.1.11-0.2.i586.rpm ca8cff05af0f9ae906e7b299d8a75e30 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-contrib-8.1.11-0.2.i586.rpm b30b9ac4f0608f42710e824a1e9ca616 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-devel-8.1.11-0.2.i586.rpm 5ebebfb8e624844249991a88c1779d3e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-docs-8.1.11-0.2.i586.rpm a7aced11c432dd6a9f2a6c1cbbde986e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-libs-8.1.11-0.2.i586.rpm d688d75f85000483855e26273a7bd8f6 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-pl-8.1.11-0.2.i586.rpm dc8288796c5cd3c85ca87d38ba5eac41 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/postgresql-server-8.1.11-0.2.i586.rpm 735ac4ae47d318ce8084943f0e63743f openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-8.2.6-0.1.i586.rpm 00cb38130dc9179a9396a1d7ae389422 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-contrib-8.2.6-0.1.i586.rpm 11554adcb0ffec043a29af35aa08126e http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-devel-8.2.6-0.1.i586.rpm d375e029250178b3eca19655fbe43d78 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-docs-8.2.6-0.1.i586.rpm 849b1a0df9b666b00ac54bf288b7930e http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-libs-8.2.6-0.1.i586.rpm 0c1b6c3f2aa3650ae4b37e62e794eb06 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-plperl-8.2.6-0.1.i586.rpm b522126d99c3d686bd6cdfa0aaa9b332 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-plpython-8.2.6-0.1.i586.rpm 7d7f3cd85106f2490d9cd1cd547220a8 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-pltcl-8.2.6-0.1.i586.rpm 75faad90f8a9f9feb6d705152491b038 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/i586/postgresql-server-8.2.6-0.1.i586.rpm aeb7de86d1cd4ff18cb2fdb0dc72eb88 Power PC Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-8.2.6-0.1.ppc.rpm 238620216c4f56f1837c93a3bceb2193 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-contrib-8.2.6-0.1.ppc.rpm e6af80526bb896f40dbdc17799389383 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-devel-8.2.6-0.1.ppc.rpm 65d562690f324e4ddb27db3d9c08121a http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-docs-8.2.6-0.1.ppc.rpm e19410915a992b190dbd3a27d17fd91a http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-libs-64bit-8.2.6-0.1.ppc.rpm e8ce8ffdbb9a6d0476a4d55332befc9f http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-libs-8.2.6-0.1.ppc.rpm dc1f737087bf46cfc301444442fe3be7 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-plperl-8.2.6-0.1.ppc.rpm cddb722e40f486c6a06a9deaaeae3a75 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-plpython-8.2.6-0.1.ppc.rpm 81ed782a8a091cbe059e22a96a45f6a7 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-pltcl-8.2.6-0.1.ppc.rpm caeddb7cf96457b5789f80a800458b9f http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc/postgresql-server-8.2.6-0.1.ppc.rpm 8dc0269ce9ac9097d5498c2d7e5b9a8c openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-8.1.11-0.1.ppc.rpm b487f7a7c4c4e25c647f6f2b20a87430 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-contrib-8.1.11-0.1.ppc.rpm edab86333ff29d7eb2537bb9ae0da4fe ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-devel-8.1.11-0.1.ppc.rpm 38018f33ce89e823dd4eed7bc342a0ad ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-docs-8.1.11-0.1.ppc.rpm 54de6d3a75bf698b97eab9e530e1c02a ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-libs-64bit-8.1.11-0.1.ppc.rpm fb4afdb8a5dcb9a504694b714eacd4c5 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-libs-8.1.11-0.1.ppc.rpm bff14c7d3ecc7d86ddd681a016223ed7 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-pl-8.1.11-0.1.ppc.rpm 2f9a3605c2f126eaf81342f82dc7b91e ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc/postgresql-server-8.1.11-0.1.ppc.rpm 819bb10e8753d58c9158c53df1d438c6 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-8.1.11-0.2.ppc.rpm 308af421fa28c9d47dacedca7da007c8 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-contrib-8.1.11-0.2.ppc.rpm 58a60912276680d2da5154c3336b3c6b ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-devel-8.1.11-0.2.ppc.rpm b495afbb35d172952ce975cd5ada9556 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-docs-8.1.11-0.2.ppc.rpm 907cbe77ca867d7d219e12f96ac2ac6a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-libs-64bit-8.1.11-0.2.ppc.rpm bd770d27e591127d8d7d0d103beeca2e ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-libs-8.1.11-0.2.ppc.rpm 2ea20f78e2b9ede2c9f7ccfd342c19e2 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-pl-8.1.11-0.2.ppc.rpm 4ad533395969b65948ec904d9addd732 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc/postgresql-server-8.1.11-0.2.ppc.rpm 4aee45a5797ba1e4d7440a9e372494e7 ppc64: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/ppc64/postgresql-8.2.6-0.1.ppc64.rpm 38a59541ba2f810ef84c67167e4597fb openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/ppc64/postgresql-8.1.11-0.1.ppc64.rpm 03b31cd33a5ad4dc1df5a9178465660c SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/ppc64/postgresql-8.1.11-0.2.ppc64.rpm d956a938adbd6027f00be58ca0e4efc4 x86-64 Platform: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-8.2.6-0.1.x86_64.rpm a583ee42037a580ae5860797246bc4f8 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-contrib-8.2.6-0.1.x86_64.rpm 3e6504d36513c3e3f09000f6e8102396 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-devel-8.2.6-0.1.x86_64.rpm c0e6160ddbf9726cd7292d72d2098e38 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-docs-8.2.6-0.1.x86_64.rpm d220202e29b13827d1ea7865be0002b9 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-libs-32bit-8.2.6-0.1.x86_64.rpm 9a1c6c4d94509cb4799599b1f60273ec http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-libs-8.2.6-0.1.x86_64.rpm b9104f37c464d6b7ee0bd357f791cfd9 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-plperl-8.2.6-0.1.x86_64.rpm 6abdea32f0917412be7c8210f6baf7aa http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-plpython-8.2.6-0.1.x86_64.rpm f08a4daabf073cd7194135944f9006ea http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-pltcl-8.2.6-0.1.x86_64.rpm 1947520e9a26086fba02f7e4b3e69f58 http://download.opensuse.org/pub/opensuse/update/10.3/rpm/x86_64/postgresql-server-8.2.6-0.1.x86_64.rpm 325678a14a968e640d4332e09702b7d3 openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-8.1.11-0.1.x86_64.rpm 233d0e302e00b723b4de37953e1bc24e ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-contrib-8.1.11-0.1.x86_64.rpm 9123ce2e9e281bebc192e35ee54b401d ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-devel-8.1.11-0.1.x86_64.rpm 4f6608e0d3dbf3979a39d3d1ef25cbe3 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-docs-8.1.11-0.1.x86_64.rpm 5f4e4d88fb39d4b75e01c981ca5fc75a ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-libs-32bit-8.1.11-0.1.x86_64.rpm 60d07f55029dc754eaaecdb938a78b0b ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-libs-8.1.11-0.1.x86_64.rpm 13d868856f80ff90d0b6976f87054b03 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-pl-8.1.11-0.1.x86_64.rpm a0aef5a6ae9d023f58ba2281e6652378 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/postgresql-server-8.1.11-0.1.x86_64.rpm c06e8b6c3d7a30094d189cb13796b877 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-8.1.11-0.2.x86_64.rpm d31a394742741fbcb19c3c803fd2dcad ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-contrib-8.1.11-0.2.x86_64.rpm 123dbfaccfc332239a51fa167502c0a6 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-devel-8.1.11-0.2.x86_64.rpm f32f2ae49dca837e2e7f74dc8b6dc68a ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-docs-8.1.11-0.2.x86_64.rpm 18cd9c9828a74c84812e89e9968a5396 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-libs-32bit-8.1.11-0.2.x86_64.rpm 27dcd0635ddbc0f95bf5836c08f412b1 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-libs-8.1.11-0.2.x86_64.rpm 6110f8ecb0f3944c33e8bf774a43489c ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-pl-8.1.11-0.2.x86_64.rpm fc548ad37acbfbfe31e37914a31b17b5 ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/postgresql-server-8.1.11-0.2.x86_64.rpm 0c3f6ec33ba855f418d9d6dfe2157e8c Sources: openSUSE 10.3: http://download.opensuse.org/pub/opensuse/update/10.3/rpm/src/postgresql-8.2.6-0.1.src.rpm 070b29f358f9702359b7cad930f6981c openSUSE 10.2: ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/postgresql-8.1.11-0.1.src.rpm a0d163f33f258f7023ae184118646c86 ftp://ftp.suse.com/pub/suse/update/10.2/rpm/src/postgresql-pl-8.1.11-0.1.nosrc.rpm f12d10a9a791eb21a72c584d730307d1 SUSE LINUX 10.1: ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/postgresql-8.1.11-0.2.src.rpm 4fd97fc82138eefa33188b1cedde7dff ftp://ftp.suse.com/pub/suse/update/10.1/rpm/src/postgresql-pl-8.1.11-0.2.nosrc.rpm a57864cea54813942584b2bbf60a48fd Open Enterprise Server http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html Novell Linux POS 9 http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html Novell Linux Desktop 9 http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html SUSE SLES 9 http://support.novell.com/techcenter/psdb/b923c74e6ff969e6dca94231c2d4e667.html SUSE Linux Enterprise Server 10 SP1 http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html SLE SDK 10 SP1 http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html SUSE Linux Enterprise Desktop 10 SP1 http://support.novell.com/techcenter/psdb/ffe18637db4f850c8f7a496168b1e74a.html ORIGINAL ADVISORY: http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00000.html OTHER REFERENCES: SA28359: http://secunia.com/advisories/28359/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------