Home > mailing lists

Re: CVE-2022-2625 - Mailing list pgsql-bugs

From	David G. Johnston
Subject	Re: CVE-2022-2625
Date	September 14, 2022 16:44:49
Msg-id	CAKFQuwYgG=4Ojh3_38eh5HzBijgC7QykURV1BQUeSPu+j5bSzg@mail.gmail.com Whole thread Raw
In response to	CVE-2022-2625 (misha1966 misha1966 <mmisha1966@bk.ru>)
List	pgsql-bugs

Tree view

On Wednesday, September 14, 2022, misha1966 misha1966 <mmisha1966@bk.ru> wrote:

Tell me, is there a CVE-2022-2625 vulnerability in posgresql 9.5? If so, who knows how to patch it? Patches from version 10 are not suitable at all...

I suggest you simply test the described behavior (you can view the source for test code) and see what happens. I suspect the problem exists quite far back.

As for a request to have someone write you custom code, that is not on-topic for a bug report. Nor is reporting against unsupported releases a known fixed bug in all supported releases. I suggest you direct your request for assistance to the -general list, or better yet, take this as evidence on why it is important to upgrade.

David J.

pgsql-bugs by date:

From: "Jonathan S. Katz"
Date: 14 September 2022, 16:18:48
Subject: Re: BUG #17613: in the postgresql 15beta4,there are lack of many extensions

From: PG Bug reporting form
Date: 15 September 2022, 15:35:33
Subject: BUG #17614: "variable not found in subplan target lists" on grouping query

Re: CVE-2022-2625 - Mailing list pgsql-bugs

Previous

Next