Skip site navigation (1) Skip section navigation (2)

PostgreSQL 2009-09-09 Security Update

From: Josh Berkus <josh(at)postgresql(dot)org>
To: pgsql-announce(at)postgresql(dot)org
Subject: PostgreSQL 2009-09-09 Security Update
Date: 2009-09-09 15:50:57
Message-ID: 200909090850.57739.josh@postgresql.org (view raw or flat)
Thread:
Lists: pgsql-announce
The PostgreSQL Project today released minor versions updating all active 
branches of the PostgreSQL object-relational database system, including 
versions 8.4.1, 8.3.8, 8.2.14, 8.1.18, 8.0.22, and 7.4.26. This release fixes 
one moderate-risk and two low-risk security issues: an authentication issue, 
a denial of service issue, and a privilege-escalation exploit. All users 
should upgrade their database installations as soon as reasonably possible.

This update release also fixes the "could not reattach shared memory" issue 
which has plagued many Windows PostgreSQL users, and updates time zone files 
for several countries. There are 23 other minor fixes, many of them affecting 
only version 8.4. See the release notes for full details.

As with other minor releases, users are not required to dump and reload their 
database in order to apply this update release; you may simply shut down 
PostgreSQL and update its binaries. Users skipping more than one update may 
need to check the release notes for extra, post-update steps.

* Release Notes: http://www.postgresql.org/docs/current/static/release.html
* Installation Packages: http://www.postgresql.org/download/
* Source Code: http://www.postgresql.org/ftp/source/
* Details of Security Issues: http://www.postgresql.org/support/security


pgsql-announce by date

Next:From: David FetterDate: 2009-09-14 05:30:16
Subject: == PostgreSQL Weekly News - September 13 2009 ==
Previous:From: Joshua D. DrakeDate: 2009-09-08 18:13:28
Subject: PostgreSQL Conference West (10/16-10/18) registration now open

Privacy Policy | About PostgreSQL
Copyright © 1996-2014 The PostgreSQL Global Development Group