Home > mailing lists

Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10 - Mailing list pgsql-general

From	Bruce Momjian
Subject	Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
Date	November 24 00:57:16
Msg-id	Z0IljGWKnJCGrC5t@momjian.us Whole thread Raw
In response to	Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10 (Greg Sabino Mullane <htamfids@gmail.com>)
Responses	Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
List	pgsql-general

Tree view

On Sat, Nov 23, 2024 at 01:30:13PM -0500, Greg Sabino Mullane wrote:
> On Sat, Nov 23, 2024 at 1:10 PM Bruce Momjian <bruce@momjian.us> wrote:
> 
>     and say bounce the database server and install the binaries.  What I
>     have never considered before, and I should have, is the complexity of
>     doing this for many remote servers.  Can we improve our guidance for
>     these cases?
> 
> 
> Hmm I'm not sure what else we can say. Our upgrade process is already
> drop-dead-simple, especially compared to many (most?) other products out there.
> People painting themselves into corners is not something we can really help
> with.

I am wondering if we can highlight which upgrades are most important for
users who have complex upgrade processes.  Maybe CVEs and corruption
fixes?

-- 
  Bruce Momjian  <bruce@momjian.us>        https://momjian.us
  EDB                                      https://enterprisedb.com

  When a patient asks the doctor, "Am I going to die?", he means 
  "Am I going to die soon?"

pgsql-general by date:

From: Greg Sabino Mullane
Date: 24 November, 00:30:13
Subject: Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10

From: Tom Lane
Date: 24 November, 01:14:27
Subject: Re: Question About Native Support for SQL:2011 Temporal Tables in PostgreSQL

Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10 - Mailing list pgsql-general

Previous

Next