This bug was fixed in the package postgresql-9.5 - 9.5.7-0ubuntu0.16.04
---------------
postgresql-9.5 (9.5.7-0ubuntu0.16.04) xenial; urgency=medium
* New upstream release (LP: #1690730)
- Restrict visibility of pg_user_mappings.umoptions, to protect passwords
stored as user mapping options (CVE-2017-7486)
- Prevent exposure of statistical information via leaky operators
(CVE-2017-7484)
- Restore libpq's recognition of the PGREQUIRESSL environment variable
(CVE-2017-7485)
- A dump/restore is not required for those running 9.5.X.
- However, if you use foreign data servers that make use of user passwords
for authentication, see the first changelog entry.
- Also, if you are using third-party replication tools that depend on
"logical decoding", see the fourth changelog entry.
- Details about other changes at full changelog:
https://www.postgresql.org/docs/9.5/static/release-9-5-7.html
-- Christian Ehrhardt <christian.ehrha...@canonical.com> Mon, 15 May
2017 08:46:07 +0200
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1690730
Title:
New upstream microreleases 9.3.17, 9.5.7 and 9.6.3
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/postgresql-9.3/+bug/1690730/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
