FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

PostgreSQL vulnerabilities

Affected packages
9.3.0	<=	postgresql93-server	<	9.3.21
9.4.0	<=	postgresql94-server	<	9.4.16
9.5.0	<=	postgresql95-server	<	9.5.11
9.6.0	<=	postgresql96-server	<	9.6.7
10.0	<=	postgresql10-server	<	10.2

Details

VuXML ID	c602c791-0cf4-11e8-a2ec-6cc21735f730
Discovery	2018-02-05
Entry	2018-02-08

The PostgreSQL project reports:

CVE-2018-1052: Fix the processing of partition keys containing multiple expressions (only for PostgreSQL-10.x)

CVE-2018-1053: Ensure that all temporary files made with "pg_upgrade" are non-world-readable

[source]

References

CVE Name	CVE-2018-1052
CVE Name	CVE-2018-1053