Trustix alert 2003-0004 (postgresql)
| From: | tsl@trustix.com (Trustix Secure Linux Advisor) | |
| To: | tsl-announce@trustix.org | |
| Subject: | TSL-2003-0004 - postgresql | |
| Date: | Fri, 21 Feb 2003 16:28:58 +0100 |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Trustix Secure Linux Security Advisory #2003-0004 Package name: postgresql Summary: new upstream version Date: 2003-02-20 Affected versions: TSL 1.1, 1.2, 1.5 - -------------------------------------------------------------------------- Package description: PostgreSQL is an advanced Object-Relational database management system (DBMS) that supports almost all SQL constructs (including transactions, subselects and user-defined types and functions). The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipulate the internal structure of PostgreSQL databases on a PostgreSQL server. These client programs can be located on the same machine with the PostgreSQL server, or may be on a remote machine which accesses a PostgreSQL server over a network connection. This package contains the docs in HTML for the whole package, as well as command-line utilities for managing PostgreSQL databases on a PostgreSQL server. Problem description: The new upstream version of postgresql, 7.1.3, included several minor security fixes. Action: We recommend that all systems with this package installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Alert: Users of TSL 1.1 and 1.2 will probably want to dump their databases before upgrading postgresql, as this upgrade is a major update to the older versions currently present in these distrobutions. Location: All TSL updates are available from <URI:http://www.trustix.net/pub/Trustix/updates/> <URI:ftp://ftp.trustix.net/pub/Trustix/updates/> About Trustix Secure Linux: Trustix Secure Linux is a small Linux distribution for servers. With focus on security and stability, the system is painlessly kept safe and up to date from day one using swup, the automated software updater. Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Get SWUP from: <URI:ftp://ftp.trustix.net/pub/Trustix/software/swup/> Public testing: These packages have been available for public testing for some time. If you want to contribute by testing the various packages in the testing tree, please feel free to share your findings on the tsl-discuss mailinglist. The testing tree is located at <URI:http://www.trustix.net/pub/Trustix/testing/> <URI:ftp://ftp.trustix.net/pub/Trustix/testing/> Questions? Check out our mailing lists: <URI:http://www.trustix.net/support/> Verification: This advisory along with all TSL packages are signed with the TSL sign key. This key is available from: <URI:http://www.trustix.net/TSL-GPG-KEY> The advisory itself is available from the errata pages at <URI:http://www.trustix.net/errata/trustix-1.2/> and <URI:http://www.trustix.net/errata/trustix-1.5/> or directly at <URI:http://www.trustix.net/errata/misc/2003/TSL-2003-0004-postgresql.asc.txt> MD5sums of the packages: - -------------------------------------------------------------------------- 6720ac4ad556904c38f9977d48f7bec7 ./1.5/SRPMS/postgresql-7.1.3-2tr.src.rpm 3eef364c38693d5ceb2864fd2587e177 ./1.5/RPMS/postgresql-test-7.1.3-2tr.i586.rpm 17bf22e34af7b837c4f8e7a27e7e19c9 ./1.5/RPMS/postgresql-tcl-7.1.3-2tr.i586.rpm d08c76fe728d87ce514c18a5d6745015 ./1.5/RPMS/postgresql-server-7.1.3-2tr.i586.rpm d75c753ec34b0fe22d886b9a9ec5c327 ./1.5/RPMS/postgresql-python-7.1.3-2tr.i586.rpm 166b6f445aeda1da47b2b8123e9751e0 ./1.5/RPMS/postgresql-plperl-7.1.3-2tr.i586.rpm a1d4a01fcdb474880fb03dc112cc4a93 ./1.5/RPMS/postgresql-perl-7.1.3-2tr.i586.rpm 6c526b88b4a8cd1ae6d1667b5cecb750 ./1.5/RPMS/postgresql-odbc-7.1.3-2tr.i586.rpm 72bd929941b1178b9bb838f0feccd174 ./1.5/RPMS/postgresql-libs-7.1.3-2tr.i586.rpm a13d2e80d4c4e76111a641c62b35a3e0 ./1.5/RPMS/postgresql-docs-7.1.3-2tr.i586.rpm b6f78622a00d6023cfc833bd4308f318 ./1.5/RPMS/postgresql-devel-7.1.3-2tr.i586.rpm 959a25d8e69497b4f196a79d304b979c ./1.5/RPMS/postgresql-contrib-7.1.3-2tr.i586.rpm bd541baea224f344b267ad85edca90e6 ./1.5/RPMS/postgresql-7.1.3-2tr.i586.rpm 6720ac4ad556904c38f9977d48f7bec7 ./1.2/SRPMS/postgresql-7.1.3-2tr.src.rpm 56e74e718e3b0cdb31ca03bba6f9d9ce ./1.2/RPMS/postgresql-test-7.1.3-2tr.i586.rpm f3488b4613dbc68e61df36157a62ca52 ./1.2/RPMS/postgresql-tcl-7.1.3-2tr.i586.rpm 264962a33b642c86a21ccac647ea17d1 ./1.2/RPMS/postgresql-server-7.1.3-2tr.i586.rpm 84a8a39ea5e6e59a6bf458203fd84b76 ./1.2/RPMS/postgresql-python-7.1.3-2tr.i586.rpm 8eaaf243a3f961e503733db8f365b1f7 ./1.2/RPMS/postgresql-plperl-7.1.3-2tr.i586.rpm c71fad8e70ec603798bb3d39b9fac5fc ./1.2/RPMS/postgresql-perl-7.1.3-2tr.i586.rpm aa43b053419bed2e2e57f7f2e7fca4c5 ./1.2/RPMS/postgresql-odbc-7.1.3-2tr.i586.rpm 5b3d236f50e9bdc07ca1a1321edb908d ./1.2/RPMS/postgresql-libs-7.1.3-2tr.i586.rpm ddb06563b40ee90ecde31cd1394ef2b7 ./1.2/RPMS/postgresql-docs-7.1.3-2tr.i586.rpm 291c46473927224829238728919541eb ./1.2/RPMS/postgresql-devel-7.1.3-2tr.i586.rpm 254b16c32e86f0ff0f7bc234aedc36a0 ./1.2/RPMS/postgresql-contrib-7.1.3-2tr.i586.rpm 2fc555e9642ed8dedcab99aef4cd653e ./1.2/RPMS/postgresql-7.1.3-2tr.i586.rpm 6720ac4ad556904c38f9977d48f7bec7 ./1.1/SRPMS/postgresql-7.1.3-2tr.src.rpm bd8aec39645a9c84f92596b3f5e05b1f ./1.1/RPMS/postgresql-test-7.1.3-2tr.i586.rpm cc6b31c20acf61c1cd4de0c161242b74 ./1.1/RPMS/postgresql-tcl-7.1.3-2tr.i586.rpm 41cc7db9725b0b272ae1b8c1f9b696d9 ./1.1/RPMS/postgresql-server-7.1.3-2tr.i586.rpm 107861fb9a98a998446e769d9d18d945 ./1.1/RPMS/postgresql-python-7.1.3-2tr.i586.rpm c722bca8a6cc294c1d0d40585cac38bf ./1.1/RPMS/postgresql-plperl-7.1.3-2tr.i586.rpm 8178723d6bd5a7701fcda41d684fc2b6 ./1.1/RPMS/postgresql-perl-7.1.3-2tr.i586.rpm ab0b0659f4795ea1689cd8cfdfeb30ef ./1.1/RPMS/postgresql-odbc-7.1.3-2tr.i586.rpm 5fcc66d25a8b6b56d708339ddca0f353 ./1.1/RPMS/postgresql-libs-7.1.3-2tr.i586.rpm 50289bac3513469abc7b16bbb7e6364d ./1.1/RPMS/postgresql-docs-7.1.3-2tr.i586.rpm 4a5351b88dcd241720a305840f1d66b6 ./1.1/RPMS/postgresql-devel-7.1.3-2tr.i586.rpm 4d99379ac96ed6220ce7c1634b3160f6 ./1.1/RPMS/postgresql-contrib-7.1.3-2tr.i586.rpm 77c72cd75855f92f946214cd890be750 ./1.1/RPMS/postgresql-7.1.3-2tr.i586.rpm - -------------------------------------------------------------------------- Trustix Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE+Vi33wRTcg4BxxS0RAtXOAJ9hg3umI10EfLFuP8AZYwZyrFFgWwCeMO5I jx475PETM8w6w2NTgcqV9hE= =0IG4 -----END PGP SIGNATURE----- _______________________________________________ tsl-announce mailing list tsl-announce@trustix.org http://www.trustix.org/mailman/listinfo/tsl-announce