group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1690730] Re: New upstream microreleases 9.3.17, 9.5.7 and 9.6.3

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1690730@xxxxxxxxxxxxxxxxxx>
Date: Mon, 29 May 2017 15:27:21 -0000
Reply-to: Bug 1690730 <1690730@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package postgresql-9.6 - 9.6.3-0ubuntu0.17.04

---------------
postgresql-9.6 (9.6.3-0ubuntu0.17.04) zesty; urgency=medium

  * New upstream release (LP: #1690730)
    - Restrict visibility of pg_user_mappings.umoptions, to protect passwords
      stored as user mapping options (CVE-2017-7486)
    - Prevent exposure of statistical information via leaky operators
      (CVE-2017-7484)
    - Restore libpq's recognition of the PGREQUIRESSL environment variable
      (CVE-2017-7485)

    - A dump/restore is not required for those running 9.6.X.
    - However, if you use foreign data servers that make use of user passwords
      for authentication, see the first changelog entry.
    - Also, if you are using third-party replication tools that depend on
      "logical decoding", see the fourth changelog entry.


    - Details about other changes at full changelog:
      https://www.postgresql.org/docs/9.6/static/release-9-6-3.html

 -- Christian Ehrhardt <christian.ehrhardt@xxxxxxxxxxxxx>  Mon, 15 May
2017 08:46:09 +0200

** Changed in: postgresql-9.6 (Ubuntu Zesty)
       Status: Fix Committed => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2017-7484

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2017-7485

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2017-7486

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1690730

Title:
  New upstream microreleases 9.3.17, 9.5.7 and 9.6.3

Status in postgresql-9.3 package in Ubuntu:
  Triaged
Status in postgresql-9.5 package in Ubuntu:
  Triaged
Status in postgresql-9.6 package in Ubuntu:
  Triaged
Status in postgresql-9.3 source package in Trusty:
  Fix Committed
Status in postgresql-9.5 source package in Xenial:
  Fix Released
Status in postgresql-9.5 source package in Yakkety:
  Fix Released
Status in postgresql-9.6 source package in Zesty:
  Fix Released

Bug description:
  https://www.postgresql.org/about/news/1746/

  As per the standing micro-release exception these should land in
  stable Ubuntu releases.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/postgresql-9.3/+bug/1690730/+subscriptions