| From: | Tom Lane <tgl(at)sss(dot)pgh(dot)pa(dot)us> |
|---|---|
| To: | Michael Paquier <michael(dot)paquier(at)gmail(dot)com> |
| Cc: | Josh Berkus <josh(at)agliodbs(dot)com>, PostgreSQL mailing lists <pgsql-hackers(at)postgresql(dot)org> |
| Subject: | Re: Release of CVEs |
| Date: | 2015-10-12 01:30:24 |
| Message-ID: | 1397.1444613424@sss.pgh.pa.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-hackers |
Michael Paquier <michael(dot)paquier(at)gmail(dot)com> writes:
> On Mon, Oct 12, 2015 at 2:54 AM, Josh Berkus wrote:
>> I don't know that there's anything the PostgreSQL project can do about
>> it. If anyone on this list is connected with MITRE, please ask them
>> what they need to be more prompt.
> http://cve.mitre.org/ has a "Contact Us" tab linking to the address I
> mentioned. That may be a start as at this state this is far more than
> 6 weeks.
I'm inclined to start by asking the Red Hat security guys, from whom
we obtained all these CVE numbers to begin with. Will check into it
tomorrow.
regards, tom lane
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Haribabu Kommi | 2015-10-12 02:07:44 | Parallel Aggregate |
| Previous Message | Peter Geoghegan | 2015-10-12 00:54:24 | INSERT ... ON CONFLICT documentation clean-up patch |