postgresql: add fix for CVE-2014-0067 Security Advisory (59e45795) · Commits · poplar / meta-openembedded

Commit 59e45795 authored Oct 29, 2014 by

Kang Kai Committed by Martin Jansa Nov 07, 2014

postgresql: add fix for CVE-2014-0067 Security Advisory

The make check command for the test suites in PostgreSQL 9.3.3 and
earlier does not properly invoke initdb to specify the authentication
requirements for a database cluster to be used for the tests, which
allows local users to gain privileges by leveraging access to this
cluster.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0067



Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

parent f1978efa

Hide whitespace changes

Inline Side-by-side

Please register or to comment

Admin message

postgresql: add fix for CVE-2014-0067 Security Advisory