Thread: PostgreSQL security update fixes a buffer overrun
View Single Post
  #1   (View Single Post)  
Old 1st February 2011
J65nko J65nko is offline
Administrator
  
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,131
Default PostgreSQL security update fixes a buffer overrun
From http://www.h-online.com/security/new...n-1181511.html

Quote:
The PostgreSQL developers have released security updates for the database system, with new versions, 9.0.3, 8.4.7, 8.3.14 and 8.2.20 released for the 9.0, 8.4, 8.3 and 8.2 active branches. The update includes a fix to prevent a buffer overrun in the contrib intarray module's input function which could allow a return address to be overwritten by malicious code. As the affected module is an optional install, the only users affected are those that have installed the intarray module; this contains useful functions for manipulation of one dimensional arrays of integers.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote