<div id="pgFrontFeature">
<div id="pgFrontFeatureContent">
<h1 id="txtFrontFeatureHeading">
- PostgreSQL 9.4.1, 9.3.6, 9.2.10, 9.1.15 & 9.0.19 Released!
+ PostgreSQL 9.4.2, 9.3.7, 9.2.11, 9.1.16 & 9.0.20 Released!
</h1>
- <p><b>5<sup>th</sup> February 2015</b></p>
+ <p><b>22<sup>nd</sup> May 2015</b></p>
<p>
The PostgreSQL Global Development Group is pleased to announce the availability of
- PostgreSQL 9.4.1, 9.3.6, 9.2.10, 9.1.15 & 9.0.19!
+ PostgreSQL 9.4.2, 9.3.7, 9.2.11, 9.1.16 & 9.0.20!
</p>
<p>
These new releases contain security and bug fixes over previous releases. All users should plan
- upgrade their systems as soon as possible.
+ to upgrade their systems as soon as possible.
</p>
<div id="txtFrontFeatureLink">
<br/>
- <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/about/news/1569/" title="Release Announcement">Release Announcement</a><br />
+ <img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/about/news/1587/" title="Release Announcement">Release Announcement</a><br />
<img src="/media/img/layout/blt_blu_arrow.png" width="6" height="6" alt="" /><a href="/download/" title="Download">Download</a><br />
</div>
</div>
<p>
The following table lists all known security issues.
Please note that versions prior to 9.0 are no longer
-supported. An archive of vulnerabilities found only in in unsupported
+supported. An archive of vulnerabilities found only in unsupported
versions is
<a href="/support/security_archive">on our Security Archive page</a>,
but vulnerability information on those versions is no longer updated,
<th class="colLast">Description</th>
</tr>
+ <tr valign="top">
+ <td class="colFirst"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3165">CVE-2015-3165</a></td>
+ <td class="colMid">9.4, 9.3, 9.2, 9.1, 9.0</td>
+ <td class="colMid">9.4.2, 9.3.7, 9.2.11, 9.1.16, 9.0.20</td>
+ <td class="colMid">core server</td>
+ <td class="colMid">B</td>
+ <td class="colLast">Double "free" after authentication timeout</td>
+ </tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3166">CVE-2015-3166</a></td>
+ <td class="colMid">9.4, 9.3, 9.2, 9.1, 9.0</td>
+ <td class="colMid">9.4.2, 9.3.7, 9.2.11, 9.1.16, 9.0.20</td>
+ <td class="colMid">core server, client</td>
+ <td class="colMid">D</td>
+ <td class="colLast">Unanticipated errors from the standard library.</td>
+ </tr>
+
+ <tr valign="top">
+ <td class="colFirst"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3167">CVE-2015-3167</a></td>
+ <td class="colMid">9.4, 9.3, 9.2, 9.1, 9.0</td>
+ <td class="colMid">9.4.2, 9.3.7, 9.2.11, 9.1.16, 9.0.20</td>
+ <td class="colMid">contrib module</td>
+ <td class="colMid">C</td>
+ <td class="colLast">pgcrypto has multiple error messages for decryption with an incorrect key.</td>
+ </tr>
+
<tr valign="top">
<td class="colFirst"><a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0241">CVE-2015-0241</a></td>
<td class="colMid">9.4, 9.3, 9.2, 9.1, 9.0</td>
projects / pgweb.git / commitdiff