SciLinux: CVE-2007-3278 postgresql SL3.x, SL4.x, SL5,x i386/x86

Date:         Mon, 14 Jan 2008 15:10:23 -0600
Reply-To:     Troy Dawson 
Sender:       Security Errata for Scientific Linux
              
From:         Troy Dawson 
Subject:      Security ERRATA for postgresql on SL3.x, SL4.x, SL5,x i386/x86_64
Comments: To: "scientific-linux-errata@fnal.gov"
          

Synopsis:	Moderate: postgresql security update
Issue date:	2008-01-11
CVE Names:	CVE-2007-3278 CVE-2007-4769 CVE-2007-4772
                 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601

Will Drewry discovered multiple flaws in PostgreSQL's regular expression
engine. An authenticated attacker could use these flaws to cause a denial
of service by causing the PostgreSQL server to crash, enter an infinite
loop, or use extensive CPU and memory resources while processing queries
containing specially crafted regular expressions. Applications that accept
regular expressions from untrusted sources may expose this problem to
unauthorized attackers. (CVE-2007-4769, CVE-2007-4772, CVE-2007-6067)

A privilege escalation flaw was discovered in PostgreSQL. An authenticated
attacker could create an index function that would be executed with
administrator privileges during database maintenance tasks, such as
database vacuuming. (CVE-2007-6600)

A privilege escalation flaw was discovered in PostgreSQL's Database Link
library (dblink). An authenticated attacker could use dblink to possibly
escalate privileges on systems with "trust" or "ident" authentication
configured. Please note that dblink functionality is not enabled by
default, and can only by enabled by a database administrator on systems
with the postgresql-contrib package installed. (CVE-2007-3278,
CVE-2007-6601)

SL 3.0.x

    SRPMS:
rh-postgresql-7.3.21-1.src.rpm
    i386:
rh-postgresql-7.3.21-1.i386.rpm
rh-postgresql-contrib-7.3.21-1.i386.rpm
rh-postgresql-devel-7.3.21-1.i386.rpm
rh-postgresql-docs-7.3.21-1.i386.rpm
rh-postgresql-jdbc-7.3.21-1.i386.rpm
rh-postgresql-libs-7.3.21-1.i386.rpm
rh-postgresql-pl-7.3.21-1.i386.rpm
rh-postgresql-python-7.3.21-1.i386.rpm
rh-postgresql-server-7.3.21-1.i386.rpm
rh-postgresql-tcl-7.3.21-1.i386.rpm
rh-postgresql-test-7.3.21-1.i386.rpm
    x86_64:
rh-postgresql-7.3.21-1.x86_64.rpm
rh-postgresql-contrib-7.3.21-1.x86_64.rpm
rh-postgresql-devel-7.3.21-1.x86_64.rpm
rh-postgresql-docs-7.3.21-1.x86_64.rpm
rh-postgresql-jdbc-7.3.21-1.x86_64.rpm
rh-postgresql-libs-7.3.21-1.i386.rpm
rh-postgresql-libs-7.3.21-1.x86_64.rpm
rh-postgresql-pl-7.3.21-1.x86_64.rpm
rh-postgresql-python-7.3.21-1.x86_64.rpm
rh-postgresql-server-7.3.21-1.x86_64.rpm
rh-postgresql-tcl-7.3.21-1.x86_64.rpm
rh-postgresql-test-7.3.21-1.x86_64.rpm

SL 4.x

    SRPMS:
postgresql-7.4.19-1.el4_6.1.src.rpm
    i386:
postgresql-7.4.19-1.el4_6.1.i386.rpm
postgresql-contrib-7.4.19-1.el4_6.1.i386.rpm
postgresql-devel-7.4.19-1.el4_6.1.i386.rpm
postgresql-docs-7.4.19-1.el4_6.1.i386.rpm
postgresql-jdbc-7.4.19-1.el4_6.1.i386.rpm
postgresql-libs-7.4.19-1.el4_6.1.i386.rpm
postgresql-pl-7.4.19-1.el4_6.1.i386.rpm
postgresql-python-7.4.19-1.el4_6.1.i386.rpm
postgresql-server-7.4.19-1.el4_6.1.i386.rpm
postgresql-tcl-7.4.19-1.el4_6.1.i386.rpm
postgresql-test-7.4.19-1.el4_6.1.i386.rpm
    x86_64:
postgresql-7.4.19-1.el4.1.x86_64.rpm
postgresql-contrib-7.4.19-1.el4.1.x86_64.rpm
postgresql-devel-7.4.19-1.el4.1.x86_64.rpm
postgresql-docs-7.4.19-1.el4.1.x86_64.rpm
postgresql-jdbc-7.4.19-1.el4.1.x86_64.rpm
postgresql-libs-7.4.19-1.el4.1.x86_64.rpm
postgresql-libs-7.4.19-1.el4_6.1.i386.rpm
postgresql-pl-7.4.19-1.el4.1.x86_64.rpm
postgresql-python-7.4.19-1.el4.1.x86_64.rpm
postgresql-server-7.4.19-1.el4.1.x86_64.rpm
postgresql-tcl-7.4.19-1.el4.1.x86_64.rpm
postgresql-test-7.4.19-1.el4.1.x86_64.rpm


SL 5.x

    SRPMS:
postgresql-8.1.11-1.el5_1.1.src.rpm
    i386:
postgresql-8.1.11-1.el5_1.1.i386.rpm
postgresql-contrib-8.1.11-1.el5_1.1.i386.rpm
postgresql-devel-8.1.11-1.el5_1.1.i386.rpm
postgresql-docs-8.1.11-1.el5_1.1.i386.rpm
postgresql-libs-8.1.11-1.el5_1.1.i386.rpm
postgresql-pl-8.1.11-1.el5_1.1.i386.rpm
postgresql-python-8.1.11-1.el5_1.1.i386.rpm
postgresql-server-8.1.11-1.el5_1.1.i386.rpm
postgresql-tcl-8.1.11-1.el5_1.1.i386.rpm
postgresql-test-8.1.11-1.el5_1.1.i386.rpm
    x86_64:
postgresql-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-contrib-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-devel-8.1.11-1.el5_1.1.i386.rpm
postgresql-devel-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-docs-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-libs-8.1.11-1.el5_1.1.i386.rpm
postgresql-libs-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-pl-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-python-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-server-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-tcl-8.1.11-1.el5_1.1.x86_64.rpm
postgresql-test-8.1.11-1.el5_1.1.x86_64.rpm


-Connie Sieh
-Troy Dawson

Date: Mon, 14 Jan 2008 15:10:23 -0600Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA for postgresql on SL3.x, SL4.x, SL5,x i386/x86_64Comments: To: "scientific-linux-errata@fnal.gov" Synopsis: Moderate: postgresql security updateIssue date: 2008-01-11CVE Names: CVE-2007-3278 CVE-2007-4769 CVE-2007-4772 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601Will Drewry discovered multiple flaws in PostgreSQL's regular expressionengine. An authenticated attacker could use these flaws to cause a denialof service by causing the PostgreSQL server to crash, enter an infiniteloop, or use extensive CPU and memory resources while processing queriescontaining specially crafted regular expressions. Applications that acceptregular expressions from untrusted sources may expose this problem tounauthorized attackers. (CVE-2007-4769, CVE-2007-4772, CVE-2007-6067)A privilege escalation flaw was discovered in PostgreSQL. An authenticatedattacker could create an index function that would be executed withadministrator privileges during database maintenance tasks, such asdatabase vacuuming. (CVE-2007-6600)A privilege escalation flaw was discovered in PostgreSQL's Database Linklibrary (dblink). An authenticated attacker could use dblink to possiblyescalate privileges on systems with "trust" or "ident" authenticationconfigured. Please note that dblink functionality is not enabled bydefault, and can only by enabled by a database administrator on systemswith the postgresql-contrib package installed. (CVE-2007-3278,CVE-2007-6601)SL 3.0.x SRPMS:rh-postgresql-7.3.21-1.src.rpm i386:rh-postgresql-7.3.21-1.i386.rpmrh-postgresql-contrib-7.3.21-1.i386.rpmrh-postgresql-devel-7.3.21-1.i386.rpmrh-postgresql-docs-7.3.21-1.i386.rpmrh-postgresql-jdbc-7.3.21-1.i386.rpmrh-postgresql-libs-7.3.21-1.i386.rpmrh-postgresql-pl-7.3.21-1.i386.rpmrh-postgresql-python-7.3.21-1.i386.rpmrh-postgresql-server-7.3.21-1.i386.rpmrh-postgresql-tcl-7.3.21-1.i386.rpmrh-postgresql-test-7.3.21-1.i386.rpm x86_64:rh-postgresql-7.3.21-1.x86_64.rpmrh-postgresql-contrib-7.3.21-1.x86_64.rpmrh-postgresql-devel-7.3.21-1.x86_64.rpmrh-postgresql-docs-7.3.21-1.x86_64.rpmrh-postgresql-jdbc-7.3.21-1.x86_64.rpmrh-postgresql-libs-7.3.21-1.i386.rpmrh-postgresql-libs-7.3.21-1.x86_64.rpmrh-postgresql-pl-7.3.21-1.x86_64.rpmrh-postgresql-python-7.3.21-1.x86_64.rpmrh-postgresql-server-7.3.21-1.x86_64.rpmrh-postgresql-tcl-7.3.21-1.x86_64.rpmrh-postgresql-test-7.3.21-1.x86_64.rpmSL 4.x SRPMS:postgresql-7.4.19-1.el4_6.1.src.rpm i386:postgresql-7.4.19-1.el4_6.1.i386.rpmpostgresql-contrib-7.4.19-1.el4_6.1.i386.rpmpostgresql-devel-7.4.19-1.el4_6.1.i386.rpmpostgresql-docs-7.4.19-1.el4_6.1.i386.rpmpostgresql-jdbc-7.4.19-1.el4_6.1.i386.rpmpostgresql-libs-7.4.19-1.el4_6.1.i386.rpmpostgresql-pl-7.4.19-1.el4_6.1.i386.rpmpostgresql-python-7.4.19-1.el4_6.1.i386.rpmpostgresql-server-7.4.19-1.el4_6.1.i386.rpmpostgresql-tcl-7.4.19-1.el4_6.1.i386.rpmpostgresql-test-7.4.19-1.el4_6.1.i386.rpm x86_64:postgresql-7.4.19-1.el4.1.x86_64.rpmpostgresql-contrib-7.4.19-1.el4.1.x86_64.rpmpostgresql-devel-7.4.19-1.el4.1.x86_64.rpmpostgresql-docs-7.4.19-1.el4.1.x86_64.rpmpostgresql-jdbc-7.4.19-1.el4.1.x86_64.rpmpostgresql-libs-7.4.19-1.el4.1.x86_64.rpmpostgresql-libs-7.4.19-1.el4_6.1.i386.rpmpostgresql-pl-7.4.19-1.el4.1.x86_64.rpmpostgresql-python-7.4.19-1.el4.1.x86_64.rpmpostgresql-server-7.4.19-1.el4.1.x86_64.rpmpostgresql-tcl-7.4.19-1.el4.1.x86_64.rpmpostgresql-test-7.4.19-1.el4.1.x86_64.rpmSL 5.x SRPMS:postgresql-8.1.11-1.el5_1.1.src.rpm i386:postgresql-8.1.11-1.el5_1.1.i386.rpmpostgresql-contrib-8.1.11-1.el5_1.1.i386.rpmpostgresql-devel-8.1.11-1.el5_1.1.i386.rpmpostgresql-docs-8.1.11-1.el5_1.1.i386.rpmpostgresql-libs-8.1.11-1.el5_1.1.i386.rpmpostgresql-pl-8.1.11-1.el5_1.1.i386.rpmpostgresql-python-8.1.11-1.el5_1.1.i386.rpmpostgresql-server-8.1.11-1.el5_1.1.i386.rpmpostgresql-tcl-8.1.11-1.el5_1.1.i386.rpmpostgresql-test-8.1.11-1.el5_1.1.i386.rpm x86_64:postgresql-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-contrib-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-devel-8.1.11-1.el5_1.1.i386.rpmpostgresql-devel-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-docs-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-libs-8.1.11-1.el5_1.1.i386.rpmpostgresql-libs-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-pl-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-python-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-server-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-tcl-8.1.11-1.el5_1.1.x86_64.rpmpostgresql-test-8.1.11-1.el5_1.1.x86_64.rpm-Connie Sieh-Troy Dawson

Get the Latest News & Insights