PostgreSQL is an advanced Object-Relational database management system
(DBMS).
A flaw was found in the way PostgreSQL allows authenticated users to
execute security-definer functions. It was possible for an unprivileged
user to execute arbitrary code with the privileges of the security-definer
function. (CVE-2007-2138)
Users of PostgreSQL should upgrade to these updated packages containing
PostgreSQL version 8.1.9, 7.4.17, and 7.3.19 which corrects this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | x86_64 | rh-postgresql-libs | < 7.3.19-1 | rh-postgresql-libs-7.3.19-1.x86_64.rpm |
RedHat | any | s390 | postgresql-test | < 7.4.17-1.RHEL4.1 | postgresql-test-7.4.17-1.RHEL4.1.s390.rpm |
RedHat | 5 | src | postgresql | < 8.1.9-1.el5 | postgresql-8.1.9-1.el5.src.rpm |
RedHat | 5 | ppc64 | postgresql-devel | < 8.1.9-1.el5 | postgresql-devel-8.1.9-1.el5.ppc64.rpm |
RedHat | any | s390x | postgresql-test | < 7.4.17-1.RHEL4.1 | postgresql-test-7.4.17-1.RHEL4.1.s390x.rpm |
RedHat | 5 | i386 | postgresql-pl | < 8.1.9-1.el5 | postgresql-pl-8.1.9-1.el5.i386.rpm |
RedHat | any | i386 | postgresql-server | < 7.4.17-1.RHEL4.1 | postgresql-server-7.4.17-1.RHEL4.1.i386.rpm |
RedHat | 5 | i386 | postgresql-test | < 8.1.9-1.el5 | postgresql-test-8.1.9-1.el5.i386.rpm |
RedHat | any | ia64 | rh-postgresql-jdbc | < 7.3.19-1 | rh-postgresql-jdbc-7.3.19-1.ia64.rpm |
RedHat | 5 | x86_64 | postgresql-python | < 8.1.9-1.el5 | postgresql-python-8.1.9-1.el5.x86_64.rpm |