Micael Mimoso submits Red Hat recommends users upgrade to updated packages that address security vulnerabilities in PostgreSQL, stunnel, XFree64, and Zebra. The consequences of the vulnerabilities include denial of service, execution of arbitrary code and privilege escalation. . .
Micael Mimoso submits Red Hat recommends users upgrade to updated packages that address security vulnerabilities in PostgreSQL, stunnel, XFree64, and Zebra. The consequences of the vulnerabilities include denial of service, execution of arbitrary code and privilege escalation.

PostgreSQL is an open source database system. Its pg_to_ascii() function suffers from buffer overflow problems that could be exploited to cause denial of service or execution of arbitrary code.

Stunnel is a "secure tunneling" wrapper for network connections, used to tunnel an unencrypted connection over an encrypted connection, or to provide an encrypted connection to services that don't support encryption. Problems in non-reentrant signal-handling stunnel functions could allow an attacker to hijack the service.

The link for this article located at SearchEnterpriseLinux is no longer available.