On Sun, 10 Oct 2004, Neil Conway wrote:
> Gaetano Mendola wrote:
> > Here http://www.sans.org/top20/#u9
> > are listed postgres vulnerability it's sad see that almost all
> > are related to third part components
>
> "Almost all"? By my count, 12 of the 17 vulnerabilities refer to
> legitimate problems in PostgreSQL, its RPM distribution, or the ODBC driver.
However, even removing "almost all" from the comment, it's still pretty
sad that a "trusted source for computer security training, certification
and research" would have a >25% miss rate on properly categorizing
vulnerabilities.