group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1828012] Re: New upstream microreleases 9.5.17, 10.8 and 11.3

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1828012@xxxxxxxxxxxxxxxxxx>
Date: Mon, 13 May 2019 12:03:13 -0000
Reply-to: Bug 1828012 <1828012@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package postgresql-10 - 10.8-0ubuntu0.18.10.1

---------------
postgresql-10 (10.8-0ubuntu0.18.10.1) cosmic-security; urgency=medium

  * New upstream release(s) (LP: #1828012)
    - Prevent row-level security policies from being bypassed via
      selectivity estimators.
      CVE-2019-10130
    - Details about these and many further changes can be found at:
      https://www.postgresql.org/docs/10/static/release-10-8.html

 -- Christian Ehrhardt <christian.ehrhardt@xxxxxxxxxxxxx>  Tue, 07 May
2019 11:20:35 +0200

** Changed in: postgresql-10 (Ubuntu Cosmic)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1828012

Title:
  New upstream microreleases 9.5.17, 10.8 and 11.3

Status in postgresql-11 package in Ubuntu:
  New
Status in postgresql-9.5 source package in Xenial:
  Fix Released
Status in postgresql-10 source package in Bionic:
  New
Status in postgresql-10 source package in Cosmic:
  Fix Released
Status in postgresql-11 source package in Disco:
  Fix Released
Status in postgresql-11 source package in Eoan:
  New

Bug description:
  Current versions in supported releases:
   postgresql-9.3 | 9.3.24-0ubuntu0.14.04 trusty <- no upstream updates anymore
   postgresql-9.5 | 9.5.16-0ubuntu0.16.04 xenial
   postgresql-10 | 10.7-0ubuntu0.18.04.1 bionic
   postgresql-10 | 10.7-0ubuntu0.18.10.1 cosmic
   postgresql-11 | 11.2-2 disco

  Special cases:
  - Eoan will be synced from Debian soon (we are on 11.2-2)

  Last relevant related stable updates: 9.5.16, 10.7

  Standing MRE - Consider last updates as template:
  - pad.lv/1637236
  - pad.lv/1664478
  - pad.lv/1690730
  - pad.lv/1713979
  - pad.lv/1730661
  - pad.lv/1747676
  - pad.lv/1752271
  - pad.lv/1786938
  - pad.lv/1815665

  As usual we test and prep from the PPA and then push through
  SRU/Security as applicable.

  Regression potential:
  - usually this works smoothly except a few test hickups that need to be
    clarified to be sure. Pre-checks will catch those to be discussed (as last time)

  Note: opening private as it is not yet announced
  Public announce will on this Thursday.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/postgresql-11/+bug/1828012/+subscriptions