PostgreSQL: Multiple vulnerabilities

PostgreSQL: Multiple vulnerabilities Multiple vulnerabilities have been found in PostgreSQL, the worst of which may allow remote Denial of Service. postgresql-server August 29, 2014 August 29, 2014: 1 456080 463884 501946 remote 9.3.3 9.2.7 9.1.12 9.0.16 8.4.20 9.3.3

PostgreSQL is an open source object-relational database management system.

Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details.

A remote authenticated attacker may be able to create a Denial of Service condition, bypass security restrictions, or have other unspecified impact.

There is no known workaround at this time.

All PostgreSQL 9.3 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/postgresql-server-9.3.3"

All PostgreSQL 9.2 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/postgresql-server-9.2.7"

All PostgreSQL 9.1 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/postgresql-server-9.1.12"

All PostgreSQL 9.0 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/postgresql-server-9.0.16"

All PostgreSQL 8.4 users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=dev-db/postgresql-server-8.4.20"

CVE-2013-0255 CVE-2013-1899 CVE-2013-1900 CVE-2013-1901 CVE-2014-0060 CVE-2014-0061 CVE-2014-0062 CVE-2014-0063 CVE-2014-0064 CVE-2014-0065 CVE-2014-0066 CVE-2014-2669 ackle ackle