[blfs-book] [BLFS Trac] #4718: PostgreSQL 9.3.3

BLFS Trac trac at linuxfromscratch.org
Thu Feb 20 13:31:45 PST 2014


#4718: PostgreSQL 9.3.3
-------------------------+--------------------------
 Reporter:  fo           |       Owner:  blfs-book@…
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  7.6
Component:  BOOK         |     Version:  SVN
 Severity:  normal       |  Resolution:
 Keywords:               |
-------------------------+--------------------------

Comment (by ken@…):

 Perhaps we ought to mention part of what it says at
 [http://www.postgresql.org/about/news/1506/] :

 With this release, we are also alerting users to a known security hole
 that allows other users on the same machine to gain access to an operating
 system account while it is doing "make check": CVE-2014-0067. "Make check"
 is normally part of building PostgreSQL from source code. As it is not
 possible to fix this issue without causing significant issues to our
 testing infrastructure, a patch will be released separately and publicly.
 Until then, users are strongly advised not to run "make check" on machines
 where untrusted users have accounts.

-- 
Ticket URL: <http://wiki.linuxfromscratch.org/blfs/ticket/4718#comment:5>
BLFS Trac <http://wiki.linuxfromscratch.org/blfs>
Beyond Linux From Scratch



More information about the blfs-book mailing list