Home > mailing lists

Re: BUG #18193: CVE-2019-9193 - Mailing list pgsql-bugs

From	Tom Lane
Subject	Re: BUG #18193: CVE-2019-9193
Date	November 13, 2023 18:20:30
Msg-id	1985242.1699888830@sss.pgh.pa.us Whole thread Raw
In response to	BUG #18193: CVE-2019-9193 (PG Bug reporting form <noreply@postgresql.org>)
Responses	Re: BUG #18193: CVE-2019-9193 ("David G. Johnston" <david.g.johnston@gmail.com>)
List	pgsql-bugs

Tree view

PG Bug reporting form <noreply@postgresql.org> writes:
> Just wanted to give an update, I'm not sure if it's mentioned anywhere on
> the website. The PostgreSQl version 13.7 is also vuln to the
> CVE-2019-9193.
> The CVE states only In PostgreSQL 9.3 through 11.2.

Please see

https://www.postgresql.org/about/news/cve-2019-9193-not-a-security-vulnerability-1935/

That CVE is erroneous in full, and so the fact that it also misstates
relevant versions is hardly surprising.

            regards, tom lane

pgsql-bugs by date:

From: hubert depesz lubaczewski
Date: 13 November 2023, 15:17:22
Subject: Re: BUG #18193: CVE-2019-9193

From: "David G. Johnston"
Date: 13 November 2023, 18:30:18
Subject: Re: BUG #18193: CVE-2019-9193

Re: BUG #18193: CVE-2019-9193 - Mailing list pgsql-bugs

Previous

Next