[CLSA-2023:1703610792] Fix CVE(s): CVE-2023-5869
Type:
security
Severity:
Important
Release date:
2023-12-26 17:13:15 UTC
Description:
* SECURITY UPDATE: Buffer overrun from integer overflow in array modification - debian/patches/CVE-2023-5869.patch: detect integer overflow while computing new array dimensions. - CVE-2023-5869 -- Pavel Mayorov Thu, 21 Dec 2023 14:36:00 +0100
Updated packages:
  • libecpg-compat3_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:2f6a13eafdf51615273d52bbada5c2e0cc8b2476
  • libecpg-dev_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:8170d9a96c6537297eba28f6b756be3e7d443a13
  • libecpg6_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:a190c6c36774cdce8b780dccaf3c1d3da4d1dd85
  • libpgtypes3_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:de0078f64d975f8d485fe02d802c1cb49c0a3682
  • libpq-dev_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:7f34a5b27f6a191aaf8595da63804f860e65ed75
  • libpq5_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:26b598163ebcc5fec78d60416e3b86813fe1911d
  • postgresql-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:f922d88043818b614041b9b239f53dfbab86d794
  • postgresql-client-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:506a353a7984b6ea05f3f2778bb359151effc36a
  • postgresql-doc-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_all.deb
    sha:761ecff97ae96585a3eff8073a1a0362d55db7e4
  • postgresql-plperl-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:6aeac4f8aeed97bf0c5d07a54d3215f381f6b8e8
  • postgresql-plpython-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:c1f11879b3a04e599d541ec7d3612114a124d2f5
  • postgresql-plpython3-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:a80bc5715229e114019a154c41938febbd322cd0
  • postgresql-pltcl-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:b00379461955fc8a3c5ad28afdd6a80149293c20
  • postgresql-server-dev-10_10.23-0ubuntu0.18.04.2+tuxcare.els2_amd64.deb
    sha:0d628543bdda9e9225e292036f36ba5c9d8be9bc
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.