Home > mailing lists

Re: PostgreSQL Security Release(s) for 7.2, 7.3 and 7.4 - Mailing list pgsql-general

From	Neil Conway
Subject	Re: PostgreSQL Security Release(s) for 7.2, 7.3 and 7.4
Date	October 24, 2004 11:19:36
Msg-id	417B578E.2000308@samurai.com Whole thread Raw
In response to	PostgreSQL Security Release(s) for 7.2, 7.3 and 7.4 ("Marc G. Fournier" <scrappy@postgresql.org>)
Responses	Re: PostgreSQL Security Release(s) for 7.2, 7.3 and 7.4 (Tom Lane <tgl@sss.pgh.pa.us>)
List	pgsql-general

Tree view

Marc G. Fournier wrote:
> In order to address a recent security report from iDefence, we have
> released 3 new "point" releases: 7.2.6, 7.3.8 and 7.4.6

Assuming you're referring to the make_oidjoins_check bug, I don't think
it is accurate to bill these as "security releases". As the 7.4.6
release notes plainly state:

---
# Avoid using temp files in /tmp in make_oidjoins_check

This has been reported as a security issue, though it's hardly worthy of
concern since there is no reason for non-developers to use this script
anyway.
---

That said, the fix for the clog bug is reason enough to make the point
releases, and reason enough for users to upgrade.

-Neil

pgsql-general by date:

From: Pierre-Frédéric Caillaud
Date: 24 October 2004, 11:12:18
Subject: Re: '1 year' = '360 days' ????

From: Michael Glaesemann
Date: 24 October 2004, 11:26:01
Subject: Re: '1 year' = '360 days' ????

Re: PostgreSQL Security Release(s) for 7.2, 7.3 and 7.4 - Mailing list pgsql-general

Previous

Next