- ---------------------------------------------------------------------                   Red Hat Security Advisory

Synopsis:          Important: postgresql security update
Advisory ID:       RHSA-2005:138-01
Advisory URL:      https://access.redhat.com/errata/RHSA-2005:138.html
Issue date:        2005-02-15
Updated on:        2005-02-15
Product:           Red Hat Enterprise Linux
CVE Names:         CAN-2005-0227 CAN-2005-0244 CAN-2005-0245 CAN-2005-0246 CAN-2005-0247
- ---------------------------------------------------------------------1. Summary:

Updated postresql packages that correct various security issues are now
available for Red Hat Enterprise Linux 4.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, ppc64, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

A flaw in the LOAD command in PostgreSQL was discovered. A local user
could use this flaw to load arbitrary shared libraries and therefore
execute arbitrary code, gaining the privileges of the PostgreSQL server.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2005-0227 to this issue.

A permission checking flaw in PostgreSQL was discovered. A local user
could bypass the EXECUTE permission check for functions by using the CREATE
AGGREGATE command. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-0244 to this issue.

Multiple buffer overflows were found in PL/PgSQL. A database user who has
permissions to create plpgsql functions could trigger this flaw which could
lead to arbitrary code execution, gaining the privileges of the PostgreSQL
server. The Common Vulnerabilities and Exposures project (cve.mitre.org)
has assigned the names CAN-2005-0245 and CAN-2005-0247 to these issues.

A flaw in the integer aggregator (intagg) contrib module for PostgreSQL was
found. A user could create carefully crafted arrays and cause a denial of
service (crash). The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2005-0246 to this issue.

The update also fixes some minor problems, notably conflicts with SELinux.

Users of postgresql should update to these erratum packages that contain
patches and are not vulnerable to these issues.

4. Solution:

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.  Use Red Hat
Network to download and update your packages.  To launch the Red Hat
Update Agent, use the following command:

    up2date

For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:

    http://www.redhat.com/docs/manuals/enterprise/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

147380 - CAN-2005-0227 Multiple security issues in PostgreSQL (CAN-2005-0244 CAN-2005-0245 CAN-2005-0246 CAN-2005-0247)

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
4e1fd5385bbc6c2f7e916b812695c7c3  postgresql-7.4.7-2.RHEL4.1.src.rpm

i386:
94d767f2f6ef199da85b02a329831df4  postgresql-7.4.7-2.RHEL4.1.i386.rpm
24d8c367ea671793886694acee47dd46  postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm
97cf17eadcfa47e8a5935ef934ad80c1  postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm
617ef0322d65637391f4a5ec829c0b48  postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm
a7290745d3b10152905c7a9b6e5d2303  postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
215a38538bac632bd75ea928f83c8dea  postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm
03f5055d27b62fce264aacb6871da359  postgresql-python-7.4.7-2.RHEL4.1.i386.rpm
f595f6046a7b3f8edb58433670423000  postgresql-server-7.4.7-2.RHEL4.1.i386.rpm
b11d6077c7eeeb024b52aa3e2d17bf33  postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm
21bbaa0275666e60f729ebafd1b09bd7  postgresql-test-7.4.7-2.RHEL4.1.i386.rpm

ia64:
413493d8d89ddb33b71529f196cd8eeb  postgresql-7.4.7-2.RHEL4.1.ia64.rpm
a429b5ccf6d1a3a72ef877d8937a1d38  postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm
3493f3559c39fbe7252646da33ba9612  postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm
cfe7b3d303df0853d29293fda459f2ce  postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm
c68a2c4dd41262805118c2a6d5f3bcdf  postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm
05574b6e2d668682fdf8b2615c377e1e  postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
4fb94f23fab1495b66015b24ebb8ef84  postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm
8dd8fe43a6aa7c2015e011b8daeb260b  postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm
bf72451ec862491282b438dfadfb621b  postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm
3ff85543fdd87549364b43dc259073bb  postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm
1a6659e0f87faadd4ddd7b04ca38b40e  postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm

ppc:
28069c3cf0b64b60ed7cda8385428d21  postgresql-7.4.7-2.RHEL4.1.ppc.rpm
5a8fce1393a87d1145598816e3e59ebc  postgresql-contrib-7.4.7-2.RHEL4.1.ppc.rpm
466949412bc1fd0562215700b865cb13  postgresql-devel-7.4.7-2.RHEL4.1.ppc.rpm
8cb56dd3587845c27bc7e069781c51cb  postgresql-docs-7.4.7-2.RHEL4.1.ppc.rpm
c36b270aa3901ff81f8ff85dbcf73b24  postgresql-jdbc-7.4.7-2.RHEL4.1.ppc.rpm
6b1f843eece8de00649b14d5d26c5eee  postgresql-libs-7.4.7-2.RHEL4.1.ppc.rpm
bbc66b7ba8c115bc4c695f108f028896  postgresql-libs-7.4.7-2.RHEL4.1.ppc64.rpm
ad1e0bf7d9cbdb7572731e6cb28167e3  postgresql-pl-7.4.7-2.RHEL4.1.ppc.rpm
879694c738be3084741bf2a451588c5f  postgresql-python-7.4.7-2.RHEL4.1.ppc.rpm
b20480752175008f288b151ba8faa912  postgresql-server-7.4.7-2.RHEL4.1.ppc.rpm
ac5d99ee20d5fc8c0d3aef5fb68daf21  postgresql-tcl-7.4.7-2.RHEL4.1.ppc.rpm
7eee8e20e25a42b5a2b634212480e3d7  postgresql-test-7.4.7-2.RHEL4.1.ppc.rpm

ppc64:
bbc66b7ba8c115bc4c695f108f028896  postgresql-libs-7.4.7-2.RHEL4.1.ppc64.rpm

s390:
561284e5fb73124623b6cd3c677fb29f  postgresql-7.4.7-2.RHEL4.1.s390.rpm
d473ed1d448b44c19567f2d2ec8be404  postgresql-contrib-7.4.7-2.RHEL4.1.s390.rpm
4fbd490194bb0892ad7a5c4f90311df5  postgresql-devel-7.4.7-2.RHEL4.1.s390.rpm
0a6691dd19025858f4a0bfbd0d4f8529  postgresql-docs-7.4.7-2.RHEL4.1.s390.rpm
457bf0a874ae3529085d9b16c254feed  postgresql-jdbc-7.4.7-2.RHEL4.1.s390.rpm
476ed4d0d0b1ee2510cfca96628391e0  postgresql-libs-7.4.7-2.RHEL4.1.s390.rpm
20966510599cb51fea0842ac46350b8b  postgresql-pl-7.4.7-2.RHEL4.1.s390.rpm
1634740126a0c0e9f6c3d32ee0440dff  postgresql-python-7.4.7-2.RHEL4.1.s390.rpm
e5cc410a24ab084811269c8cfb82baeb  postgresql-server-7.4.7-2.RHEL4.1.s390.rpm
146614ff66aef3c562d8e40f73642a8c  postgresql-tcl-7.4.7-2.RHEL4.1.s390.rpm
096895ed7da7e396b509e5342b8ca156  postgresql-test-7.4.7-2.RHEL4.1.s390.rpm

s390x:
cdb2c8d8affde739ff8c09ec203414cb  postgresql-7.4.7-2.RHEL4.1.s390x.rpm
c89c16f717478055f6c5a3262a5c904d  postgresql-contrib-7.4.7-2.RHEL4.1.s390x.rpm
7155f40e42f605b4c3db49951db86c0f  postgresql-devel-7.4.7-2.RHEL4.1.s390x.rpm
e70c52d4ec436cbed3a47febb8152e72  postgresql-docs-7.4.7-2.RHEL4.1.s390x.rpm
d82f643222f0e542ed5357619b058365  postgresql-jdbc-7.4.7-2.RHEL4.1.s390x.rpm
d774caa8a4fdfa0211d3ebff6ffa0c93  postgresql-libs-7.4.7-2.RHEL4.1.s390x.rpm
476ed4d0d0b1ee2510cfca96628391e0  postgresql-libs-7.4.7-2.RHEL4.1.s390.rpm
5c6713ee95d04ba7703245d38573deaf  postgresql-pl-7.4.7-2.RHEL4.1.s390x.rpm
cf0b594f982c34e805d895e19c3de52e  postgresql-python-7.4.7-2.RHEL4.1.s390x.rpm
63da4f50fb669b7b2dfa7b02efc66d6b  postgresql-server-7.4.7-2.RHEL4.1.s390x.rpm
883fe4ec6c243fd7967240933aa6edd8  postgresql-tcl-7.4.7-2.RHEL4.1.s390x.rpm
bd301c03b0af52655c530a0a388755a4  postgresql-test-7.4.7-2.RHEL4.1.s390x.rpm

x86_64:
160c62ec767ff02044312f7ac8dedcb9  postgresql-7.4.7-2.RHEL4.1.x86_64.rpm
566bcbd048c537b1af7c1292c02a0b4a  postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm
e97a12835837cc113d5eafbd3cfe837a  postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm
3f836c1c3dbdd9e9267666e3d469c009  postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm
bc4f32b5a6365cbf8fe19d18ee301584  postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm
688d65282a1391f2188c356d88c21424  postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
811345247cc87ce5e29a68cf60119ac5  postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm
3fc8e7c2cfc2403227eacdc00f633dcb  postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm
86aff4b1ad4a271516ea5f4a67a716f3  postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm
a8d738af14ae28007fa34594b3f93ca9  postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm
d771483eb87fa3cf2b53585f99a95d57  postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
4e1fd5385bbc6c2f7e916b812695c7c3  postgresql-7.4.7-2.RHEL4.1.src.rpm

i386:
94d767f2f6ef199da85b02a329831df4  postgresql-7.4.7-2.RHEL4.1.i386.rpm
24d8c367ea671793886694acee47dd46  postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm
97cf17eadcfa47e8a5935ef934ad80c1  postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm
617ef0322d65637391f4a5ec829c0b48  postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm
a7290745d3b10152905c7a9b6e5d2303  postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
215a38538bac632bd75ea928f83c8dea  postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm
03f5055d27b62fce264aacb6871da359  postgresql-python-7.4.7-2.RHEL4.1.i386.rpm
f595f6046a7b3f8edb58433670423000  postgresql-server-7.4.7-2.RHEL4.1.i386.rpm
b11d6077c7eeeb024b52aa3e2d17bf33  postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm
21bbaa0275666e60f729ebafd1b09bd7  postgresql-test-7.4.7-2.RHEL4.1.i386.rpm

x86_64:
160c62ec767ff02044312f7ac8dedcb9  postgresql-7.4.7-2.RHEL4.1.x86_64.rpm
566bcbd048c537b1af7c1292c02a0b4a  postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm
e97a12835837cc113d5eafbd3cfe837a  postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm
3f836c1c3dbdd9e9267666e3d469c009  postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm
bc4f32b5a6365cbf8fe19d18ee301584  postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm
688d65282a1391f2188c356d88c21424  postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
811345247cc87ce5e29a68cf60119ac5  postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm
3fc8e7c2cfc2403227eacdc00f633dcb  postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm
86aff4b1ad4a271516ea5f4a67a716f3  postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm
a8d738af14ae28007fa34594b3f93ca9  postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm
d771483eb87fa3cf2b53585f99a95d57  postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
4e1fd5385bbc6c2f7e916b812695c7c3  postgresql-7.4.7-2.RHEL4.1.src.rpm

i386:
94d767f2f6ef199da85b02a329831df4  postgresql-7.4.7-2.RHEL4.1.i386.rpm
24d8c367ea671793886694acee47dd46  postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm
97cf17eadcfa47e8a5935ef934ad80c1  postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm
617ef0322d65637391f4a5ec829c0b48  postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm
a7290745d3b10152905c7a9b6e5d2303  postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
215a38538bac632bd75ea928f83c8dea  postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm
03f5055d27b62fce264aacb6871da359  postgresql-python-7.4.7-2.RHEL4.1.i386.rpm
f595f6046a7b3f8edb58433670423000  postgresql-server-7.4.7-2.RHEL4.1.i386.rpm
b11d6077c7eeeb024b52aa3e2d17bf33  postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm
21bbaa0275666e60f729ebafd1b09bd7  postgresql-test-7.4.7-2.RHEL4.1.i386.rpm

ia64:
413493d8d89ddb33b71529f196cd8eeb  postgresql-7.4.7-2.RHEL4.1.ia64.rpm
a429b5ccf6d1a3a72ef877d8937a1d38  postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm
3493f3559c39fbe7252646da33ba9612  postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm
cfe7b3d303df0853d29293fda459f2ce  postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm
c68a2c4dd41262805118c2a6d5f3bcdf  postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm
05574b6e2d668682fdf8b2615c377e1e  postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
4fb94f23fab1495b66015b24ebb8ef84  postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm
8dd8fe43a6aa7c2015e011b8daeb260b  postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm
bf72451ec862491282b438dfadfb621b  postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm
3ff85543fdd87549364b43dc259073bb  postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm
1a6659e0f87faadd4ddd7b04ca38b40e  postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm

x86_64:
160c62ec767ff02044312f7ac8dedcb9  postgresql-7.4.7-2.RHEL4.1.x86_64.rpm
566bcbd048c537b1af7c1292c02a0b4a  postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm
e97a12835837cc113d5eafbd3cfe837a  postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm
3f836c1c3dbdd9e9267666e3d469c009  postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm
bc4f32b5a6365cbf8fe19d18ee301584  postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm
688d65282a1391f2188c356d88c21424  postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
811345247cc87ce5e29a68cf60119ac5  postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm
3fc8e7c2cfc2403227eacdc00f633dcb  postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm
86aff4b1ad4a271516ea5f4a67a716f3  postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm
a8d738af14ae28007fa34594b3f93ca9  postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm
d771483eb87fa3cf2b53585f99a95d57  postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
4e1fd5385bbc6c2f7e916b812695c7c3  postgresql-7.4.7-2.RHEL4.1.src.rpm

i386:
94d767f2f6ef199da85b02a329831df4  postgresql-7.4.7-2.RHEL4.1.i386.rpm
24d8c367ea671793886694acee47dd46  postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm
97cf17eadcfa47e8a5935ef934ad80c1  postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm
617ef0322d65637391f4a5ec829c0b48  postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm
a7290745d3b10152905c7a9b6e5d2303  postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
215a38538bac632bd75ea928f83c8dea  postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm
03f5055d27b62fce264aacb6871da359  postgresql-python-7.4.7-2.RHEL4.1.i386.rpm
f595f6046a7b3f8edb58433670423000  postgresql-server-7.4.7-2.RHEL4.1.i386.rpm
b11d6077c7eeeb024b52aa3e2d17bf33  postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm
21bbaa0275666e60f729ebafd1b09bd7  postgresql-test-7.4.7-2.RHEL4.1.i386.rpm

ia64:
413493d8d89ddb33b71529f196cd8eeb  postgresql-7.4.7-2.RHEL4.1.ia64.rpm
a429b5ccf6d1a3a72ef877d8937a1d38  postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm
3493f3559c39fbe7252646da33ba9612  postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm
cfe7b3d303df0853d29293fda459f2ce  postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm
c68a2c4dd41262805118c2a6d5f3bcdf  postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm
05574b6e2d668682fdf8b2615c377e1e  postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
4fb94f23fab1495b66015b24ebb8ef84  postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm
8dd8fe43a6aa7c2015e011b8daeb260b  postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm
bf72451ec862491282b438dfadfb621b  postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm
3ff85543fdd87549364b43dc259073bb  postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm
1a6659e0f87faadd4ddd7b04ca38b40e  postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm

x86_64:
160c62ec767ff02044312f7ac8dedcb9  postgresql-7.4.7-2.RHEL4.1.x86_64.rpm
566bcbd048c537b1af7c1292c02a0b4a  postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm
e97a12835837cc113d5eafbd3cfe837a  postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm
3f836c1c3dbdd9e9267666e3d469c009  postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm
bc4f32b5a6365cbf8fe19d18ee301584  postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm
688d65282a1391f2188c356d88c21424  postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm
fc57db8cf70d429f50f47de0de273a5d  postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm
811345247cc87ce5e29a68cf60119ac5  postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm
3fc8e7c2cfc2403227eacdc00f633dcb  postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm
86aff4b1ad4a271516ea5f4a67a716f3  postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm
a8d738af14ae28007fa34594b3f93ca9  postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm
d771483eb87fa3cf2b53585f99a95d57  postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and 
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0227
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0244
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0246
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0247

8. Contact:

The Red Hat security contact is .  More contact
details at https://www.redhat.com/security/team/contact/

Copyright 2005 Red Hat, Inc.

RedHat: Important: postgresql security update RHSA-2005:138-01

Updated postresql packages that correct various security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact b...

Summary



Summary

A flaw in the LOAD command in PostgreSQL was discovered. A local user could use this flaw to load arbitrary shared libraries and therefore execute arbitrary code, gaining the privileges of the PostgreSQL server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0227 to this issue. A permission checking flaw in PostgreSQL was discovered. A local user could bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0244 to this issue. Multiple buffer overflows were found in PL/PgSQL. A database user who has permissions to create plpgsql functions could trigger this flaw which could lead to arbitrary code execution, gaining the privileges of the PostgreSQL server. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2005-0245 and CAN-2005-0247 to these issues. A flaw in the integer aggregator (intagg) contrib module for PostgreSQL was found. A user could create carefully crafted arrays and cause a denial of service (crash). The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0246 to this issue. The update also fixes some minor problems, notably conflicts with SELinux. Users of postgresql should update to these erratum packages that contain patches and are not vulnerable to these issues.


Solution

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
147380 - CAN-2005-0227 Multiple security issues in PostgreSQL (CAN-2005-0244 CAN-2005-0245 CAN-2005-0246 CAN-2005-0247)
6. RPMs required:
Red Hat Enterprise Linux AS version 4:
SRPMS: 4e1fd5385bbc6c2f7e916b812695c7c3 postgresql-7.4.7-2.RHEL4.1.src.rpm
i386: 94d767f2f6ef199da85b02a329831df4 postgresql-7.4.7-2.RHEL4.1.i386.rpm 24d8c367ea671793886694acee47dd46 postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm 97cf17eadcfa47e8a5935ef934ad80c1 postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm 617ef0322d65637391f4a5ec829c0b48 postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm a7290745d3b10152905c7a9b6e5d2303 postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 215a38538bac632bd75ea928f83c8dea postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm 03f5055d27b62fce264aacb6871da359 postgresql-python-7.4.7-2.RHEL4.1.i386.rpm f595f6046a7b3f8edb58433670423000 postgresql-server-7.4.7-2.RHEL4.1.i386.rpm b11d6077c7eeeb024b52aa3e2d17bf33 postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm 21bbaa0275666e60f729ebafd1b09bd7 postgresql-test-7.4.7-2.RHEL4.1.i386.rpm
ia64: 413493d8d89ddb33b71529f196cd8eeb postgresql-7.4.7-2.RHEL4.1.ia64.rpm a429b5ccf6d1a3a72ef877d8937a1d38 postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm 3493f3559c39fbe7252646da33ba9612 postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm cfe7b3d303df0853d29293fda459f2ce postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm c68a2c4dd41262805118c2a6d5f3bcdf postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm 05574b6e2d668682fdf8b2615c377e1e postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 4fb94f23fab1495b66015b24ebb8ef84 postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm 8dd8fe43a6aa7c2015e011b8daeb260b postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm bf72451ec862491282b438dfadfb621b postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm 3ff85543fdd87549364b43dc259073bb postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm 1a6659e0f87faadd4ddd7b04ca38b40e postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm
ppc: 28069c3cf0b64b60ed7cda8385428d21 postgresql-7.4.7-2.RHEL4.1.ppc.rpm 5a8fce1393a87d1145598816e3e59ebc postgresql-contrib-7.4.7-2.RHEL4.1.ppc.rpm 466949412bc1fd0562215700b865cb13 postgresql-devel-7.4.7-2.RHEL4.1.ppc.rpm 8cb56dd3587845c27bc7e069781c51cb postgresql-docs-7.4.7-2.RHEL4.1.ppc.rpm c36b270aa3901ff81f8ff85dbcf73b24 postgresql-jdbc-7.4.7-2.RHEL4.1.ppc.rpm 6b1f843eece8de00649b14d5d26c5eee postgresql-libs-7.4.7-2.RHEL4.1.ppc.rpm bbc66b7ba8c115bc4c695f108f028896 postgresql-libs-7.4.7-2.RHEL4.1.ppc64.rpm ad1e0bf7d9cbdb7572731e6cb28167e3 postgresql-pl-7.4.7-2.RHEL4.1.ppc.rpm 879694c738be3084741bf2a451588c5f postgresql-python-7.4.7-2.RHEL4.1.ppc.rpm b20480752175008f288b151ba8faa912 postgresql-server-7.4.7-2.RHEL4.1.ppc.rpm ac5d99ee20d5fc8c0d3aef5fb68daf21 postgresql-tcl-7.4.7-2.RHEL4.1.ppc.rpm 7eee8e20e25a42b5a2b634212480e3d7 postgresql-test-7.4.7-2.RHEL4.1.ppc.rpm
ppc64: bbc66b7ba8c115bc4c695f108f028896 postgresql-libs-7.4.7-2.RHEL4.1.ppc64.rpm
s390: 561284e5fb73124623b6cd3c677fb29f postgresql-7.4.7-2.RHEL4.1.s390.rpm d473ed1d448b44c19567f2d2ec8be404 postgresql-contrib-7.4.7-2.RHEL4.1.s390.rpm 4fbd490194bb0892ad7a5c4f90311df5 postgresql-devel-7.4.7-2.RHEL4.1.s390.rpm 0a6691dd19025858f4a0bfbd0d4f8529 postgresql-docs-7.4.7-2.RHEL4.1.s390.rpm 457bf0a874ae3529085d9b16c254feed postgresql-jdbc-7.4.7-2.RHEL4.1.s390.rpm 476ed4d0d0b1ee2510cfca96628391e0 postgresql-libs-7.4.7-2.RHEL4.1.s390.rpm 20966510599cb51fea0842ac46350b8b postgresql-pl-7.4.7-2.RHEL4.1.s390.rpm 1634740126a0c0e9f6c3d32ee0440dff postgresql-python-7.4.7-2.RHEL4.1.s390.rpm e5cc410a24ab084811269c8cfb82baeb postgresql-server-7.4.7-2.RHEL4.1.s390.rpm 146614ff66aef3c562d8e40f73642a8c postgresql-tcl-7.4.7-2.RHEL4.1.s390.rpm 096895ed7da7e396b509e5342b8ca156 postgresql-test-7.4.7-2.RHEL4.1.s390.rpm
s390x: cdb2c8d8affde739ff8c09ec203414cb postgresql-7.4.7-2.RHEL4.1.s390x.rpm c89c16f717478055f6c5a3262a5c904d postgresql-contrib-7.4.7-2.RHEL4.1.s390x.rpm 7155f40e42f605b4c3db49951db86c0f postgresql-devel-7.4.7-2.RHEL4.1.s390x.rpm e70c52d4ec436cbed3a47febb8152e72 postgresql-docs-7.4.7-2.RHEL4.1.s390x.rpm d82f643222f0e542ed5357619b058365 postgresql-jdbc-7.4.7-2.RHEL4.1.s390x.rpm d774caa8a4fdfa0211d3ebff6ffa0c93 postgresql-libs-7.4.7-2.RHEL4.1.s390x.rpm 476ed4d0d0b1ee2510cfca96628391e0 postgresql-libs-7.4.7-2.RHEL4.1.s390.rpm 5c6713ee95d04ba7703245d38573deaf postgresql-pl-7.4.7-2.RHEL4.1.s390x.rpm cf0b594f982c34e805d895e19c3de52e postgresql-python-7.4.7-2.RHEL4.1.s390x.rpm 63da4f50fb669b7b2dfa7b02efc66d6b postgresql-server-7.4.7-2.RHEL4.1.s390x.rpm 883fe4ec6c243fd7967240933aa6edd8 postgresql-tcl-7.4.7-2.RHEL4.1.s390x.rpm bd301c03b0af52655c530a0a388755a4 postgresql-test-7.4.7-2.RHEL4.1.s390x.rpm
x86_64: 160c62ec767ff02044312f7ac8dedcb9 postgresql-7.4.7-2.RHEL4.1.x86_64.rpm 566bcbd048c537b1af7c1292c02a0b4a postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm e97a12835837cc113d5eafbd3cfe837a postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm 3f836c1c3dbdd9e9267666e3d469c009 postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm bc4f32b5a6365cbf8fe19d18ee301584 postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm 688d65282a1391f2188c356d88c21424 postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 811345247cc87ce5e29a68cf60119ac5 postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm 3fc8e7c2cfc2403227eacdc00f633dcb postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm 86aff4b1ad4a271516ea5f4a67a716f3 postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm a8d738af14ae28007fa34594b3f93ca9 postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm d771483eb87fa3cf2b53585f99a95d57 postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS: 4e1fd5385bbc6c2f7e916b812695c7c3 postgresql-7.4.7-2.RHEL4.1.src.rpm
i386: 94d767f2f6ef199da85b02a329831df4 postgresql-7.4.7-2.RHEL4.1.i386.rpm 24d8c367ea671793886694acee47dd46 postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm 97cf17eadcfa47e8a5935ef934ad80c1 postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm 617ef0322d65637391f4a5ec829c0b48 postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm a7290745d3b10152905c7a9b6e5d2303 postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 215a38538bac632bd75ea928f83c8dea postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm 03f5055d27b62fce264aacb6871da359 postgresql-python-7.4.7-2.RHEL4.1.i386.rpm f595f6046a7b3f8edb58433670423000 postgresql-server-7.4.7-2.RHEL4.1.i386.rpm b11d6077c7eeeb024b52aa3e2d17bf33 postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm 21bbaa0275666e60f729ebafd1b09bd7 postgresql-test-7.4.7-2.RHEL4.1.i386.rpm
x86_64: 160c62ec767ff02044312f7ac8dedcb9 postgresql-7.4.7-2.RHEL4.1.x86_64.rpm 566bcbd048c537b1af7c1292c02a0b4a postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm e97a12835837cc113d5eafbd3cfe837a postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm 3f836c1c3dbdd9e9267666e3d469c009 postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm bc4f32b5a6365cbf8fe19d18ee301584 postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm 688d65282a1391f2188c356d88c21424 postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 811345247cc87ce5e29a68cf60119ac5 postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm 3fc8e7c2cfc2403227eacdc00f633dcb postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm 86aff4b1ad4a271516ea5f4a67a716f3 postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm a8d738af14ae28007fa34594b3f93ca9 postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm d771483eb87fa3cf2b53585f99a95d57 postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS: 4e1fd5385bbc6c2f7e916b812695c7c3 postgresql-7.4.7-2.RHEL4.1.src.rpm
i386: 94d767f2f6ef199da85b02a329831df4 postgresql-7.4.7-2.RHEL4.1.i386.rpm 24d8c367ea671793886694acee47dd46 postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm 97cf17eadcfa47e8a5935ef934ad80c1 postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm 617ef0322d65637391f4a5ec829c0b48 postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm a7290745d3b10152905c7a9b6e5d2303 postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 215a38538bac632bd75ea928f83c8dea postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm 03f5055d27b62fce264aacb6871da359 postgresql-python-7.4.7-2.RHEL4.1.i386.rpm f595f6046a7b3f8edb58433670423000 postgresql-server-7.4.7-2.RHEL4.1.i386.rpm b11d6077c7eeeb024b52aa3e2d17bf33 postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm 21bbaa0275666e60f729ebafd1b09bd7 postgresql-test-7.4.7-2.RHEL4.1.i386.rpm
ia64: 413493d8d89ddb33b71529f196cd8eeb postgresql-7.4.7-2.RHEL4.1.ia64.rpm a429b5ccf6d1a3a72ef877d8937a1d38 postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm 3493f3559c39fbe7252646da33ba9612 postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm cfe7b3d303df0853d29293fda459f2ce postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm c68a2c4dd41262805118c2a6d5f3bcdf postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm 05574b6e2d668682fdf8b2615c377e1e postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 4fb94f23fab1495b66015b24ebb8ef84 postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm 8dd8fe43a6aa7c2015e011b8daeb260b postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm bf72451ec862491282b438dfadfb621b postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm 3ff85543fdd87549364b43dc259073bb postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm 1a6659e0f87faadd4ddd7b04ca38b40e postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm
x86_64: 160c62ec767ff02044312f7ac8dedcb9 postgresql-7.4.7-2.RHEL4.1.x86_64.rpm 566bcbd048c537b1af7c1292c02a0b4a postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm e97a12835837cc113d5eafbd3cfe837a postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm 3f836c1c3dbdd9e9267666e3d469c009 postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm bc4f32b5a6365cbf8fe19d18ee301584 postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm 688d65282a1391f2188c356d88c21424 postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 811345247cc87ce5e29a68cf60119ac5 postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm 3fc8e7c2cfc2403227eacdc00f633dcb postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm 86aff4b1ad4a271516ea5f4a67a716f3 postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm a8d738af14ae28007fa34594b3f93ca9 postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm d771483eb87fa3cf2b53585f99a95d57 postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS: 4e1fd5385bbc6c2f7e916b812695c7c3 postgresql-7.4.7-2.RHEL4.1.src.rpm
i386: 94d767f2f6ef199da85b02a329831df4 postgresql-7.4.7-2.RHEL4.1.i386.rpm 24d8c367ea671793886694acee47dd46 postgresql-contrib-7.4.7-2.RHEL4.1.i386.rpm 97cf17eadcfa47e8a5935ef934ad80c1 postgresql-devel-7.4.7-2.RHEL4.1.i386.rpm 617ef0322d65637391f4a5ec829c0b48 postgresql-docs-7.4.7-2.RHEL4.1.i386.rpm a7290745d3b10152905c7a9b6e5d2303 postgresql-jdbc-7.4.7-2.RHEL4.1.i386.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 215a38538bac632bd75ea928f83c8dea postgresql-pl-7.4.7-2.RHEL4.1.i386.rpm 03f5055d27b62fce264aacb6871da359 postgresql-python-7.4.7-2.RHEL4.1.i386.rpm f595f6046a7b3f8edb58433670423000 postgresql-server-7.4.7-2.RHEL4.1.i386.rpm b11d6077c7eeeb024b52aa3e2d17bf33 postgresql-tcl-7.4.7-2.RHEL4.1.i386.rpm 21bbaa0275666e60f729ebafd1b09bd7 postgresql-test-7.4.7-2.RHEL4.1.i386.rpm
ia64: 413493d8d89ddb33b71529f196cd8eeb postgresql-7.4.7-2.RHEL4.1.ia64.rpm a429b5ccf6d1a3a72ef877d8937a1d38 postgresql-contrib-7.4.7-2.RHEL4.1.ia64.rpm 3493f3559c39fbe7252646da33ba9612 postgresql-devel-7.4.7-2.RHEL4.1.ia64.rpm cfe7b3d303df0853d29293fda459f2ce postgresql-docs-7.4.7-2.RHEL4.1.ia64.rpm c68a2c4dd41262805118c2a6d5f3bcdf postgresql-jdbc-7.4.7-2.RHEL4.1.ia64.rpm 05574b6e2d668682fdf8b2615c377e1e postgresql-libs-7.4.7-2.RHEL4.1.ia64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 4fb94f23fab1495b66015b24ebb8ef84 postgresql-pl-7.4.7-2.RHEL4.1.ia64.rpm 8dd8fe43a6aa7c2015e011b8daeb260b postgresql-python-7.4.7-2.RHEL4.1.ia64.rpm bf72451ec862491282b438dfadfb621b postgresql-server-7.4.7-2.RHEL4.1.ia64.rpm 3ff85543fdd87549364b43dc259073bb postgresql-tcl-7.4.7-2.RHEL4.1.ia64.rpm 1a6659e0f87faadd4ddd7b04ca38b40e postgresql-test-7.4.7-2.RHEL4.1.ia64.rpm
x86_64: 160c62ec767ff02044312f7ac8dedcb9 postgresql-7.4.7-2.RHEL4.1.x86_64.rpm 566bcbd048c537b1af7c1292c02a0b4a postgresql-contrib-7.4.7-2.RHEL4.1.x86_64.rpm e97a12835837cc113d5eafbd3cfe837a postgresql-devel-7.4.7-2.RHEL4.1.x86_64.rpm 3f836c1c3dbdd9e9267666e3d469c009 postgresql-docs-7.4.7-2.RHEL4.1.x86_64.rpm bc4f32b5a6365cbf8fe19d18ee301584 postgresql-jdbc-7.4.7-2.RHEL4.1.x86_64.rpm 688d65282a1391f2188c356d88c21424 postgresql-libs-7.4.7-2.RHEL4.1.x86_64.rpm fc57db8cf70d429f50f47de0de273a5d postgresql-libs-7.4.7-2.RHEL4.1.i386.rpm 811345247cc87ce5e29a68cf60119ac5 postgresql-pl-7.4.7-2.RHEL4.1.x86_64.rpm 3fc8e7c2cfc2403227eacdc00f633dcb postgresql-python-7.4.7-2.RHEL4.1.x86_64.rpm 86aff4b1ad4a271516ea5f4a67a716f3 postgresql-server-7.4.7-2.RHEL4.1.x86_64.rpm a8d738af14ae28007fa34594b3f93ca9 postgresql-tcl-7.4.7-2.RHEL4.1.x86_64.rpm d771483eb87fa3cf2b53585f99a95d57 postgresql-test-7.4.7-2.RHEL4.1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0227 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0244 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0245 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0246 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0247

Package List


Severity
Advisory ID: RHSA-2005:138-01
Advisory URL: https://access.redhat.com/errata/RHSA-2005:138.html
Issued Date: : 2005-02-15
Updated on: 2005-02-15
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-0227 CAN-2005-0244 CAN-2005-0245 CAN-2005-0246 CAN-2005-0247 Updated postresql packages that correct various security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team.

Topic


Topic


 

Relevant Releases Architectures

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, ppc64, s390, s390x, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64


Bugs Fixed


Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved