<div id="pgFrontMain">
<div id="pgFrontFeature">
<div id="pgFrontFeatureContent">
- <p><b>9<sup>th</sup> February 2017</b></p>
+ <p><b>11<sup>th</sup> May 2017</b></p>
<h1 id="txtFrontFeatureHeading">
- PostgreSQL 9.6.2, 9.5.6, 9.4.11, 9.3.16 and 9.2.20 Released!
+ PostgreSQL 9.6.3, 9.5.7, 9.4.12, 9.3.17 and 9.2.21 Released!
</h1>
<p>
The PostgreSQL Global Development Group is pleased to announce the availability of
- PostgreSQL 9.6.2, 9.5.6, 9.4.11, 9.3.16 and 9.2.20.
+ PostgreSQL 9.6.3, 9.5.7, 9.4.12, 9.3.17 and 9.2.21.
</p>
<p>
These new releases contain bug fixes over previous releases. All users should plan
</p>
<div id="txtFrontFeatureLink">
<br/>
- <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/about/news/1733/" title="Release Announcement">Release Announcement</a><br />
- <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/docs/9.6/static/release-9-6-2.html" title="Release Notes">Release Notes</a><br />
+ <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/about/news/1746/" title="Release Announcement">Release Announcement</a><br />
+ <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/docs/9.6/static/release-9-6-3.html" title="Release Notes">Release Notes</a><br />
<img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/download/" title="Download">Download</a><br />
</div>
</div>
<th class="colMid"><a href="#cls">Class</a></th>
<th class="colLast">Description</th>
</tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="https://access.redhat.com/security/cve/CVE-2017-7484">CVE-2017-7484</a></td>
+ <td class="colMid">9.2-9.6</td>
+ <td class="colMid">9.6.3, 9.5.7, 9.4.12, 9.3.17, 9.2.21</td>
+ <td class="colMid">core server</td>
+ <td class="colMid">C</td>
+ <td class="colLast">selectivity estimators bypass SELECT privilege checks</td>
+ </tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="https://access.redhat.com/security/cve/CVE-2017-7485">CVE-2017-7485</a></td>
+ <td class="colMid">9.3-9.6</td>
+ <td class="colMid">9.6.3, 9.5.7, 9.4.12, 9.3.17</td>
+ <td class="colMid">client</td>
+ <td class="colMid">A</td>
+ <td class="colLast">libpq ignores PGREQUIRESSL environment variable</td>
+ </tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="https://access.redhat.com/security/cve/CVE-2017-7486">CVE-2017-7486</a></td>
+ <td class="colMid">9.2-9.6</td>
+ <td class="colMid">9.6.3, 9.5.7, 9.4.12, 9.3.17, 9.2.21</td>
+ <td class="colMid">core server</td>
+ <td class="colMid">C</td>
+ <td class="colLast">pg_user_mappings view discloses foreign server passwords</td>
+ </tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="https://access.redhat.com/security/cve/CVE-2016-7048">CVE-2016-7048</a></td>
+ <td class="colMid">9.1-9.5</td>
+ <td class="colMid">9.5.5, 9.4.10, 9.3.15, 9.2.19, 9.1.24</td>
+ <td class="colMid">packaging</td>
+ <td class="colMid">A</td>
+ <td class="colLast">Interactive installer downloads software over plain HTTP, then executes it</td>
+ </tr>
<tr valign="top">
<td class="colFirst"><a href="https://access.redhat.com/security/cve/CVE-2016-5423">CVE-2016-5423</a></td>
projects / pgweb.git / commitdiff