Referenced CVEs:
CVE-2007-3278 CVE-2007-4769 CVE-2007-4772 CVE-2007-6067 CVE-2007-6600 CVE-2007-6601
Description:
===========================================================Ubuntu Security Notice USN-568-1 January 14, 2008postgresql vulnerabilitiesCVE-2007-3278, CVE-2007-4769, CVE-2007-4772, CVE-2007-6067,CVE-2007-6600, CVE-2007-6601===========================================================A security issue affects the following Ubuntu releases:Ubuntu 6.06 LTSUbuntu 6.10Ubuntu 7.04Ubuntu 7.10This advisory also applies to the corresponding versions ofKubuntu, Edubuntu, and Xubuntu.The problem can be corrected by upgrading your system to thefollowing package versions:Ubuntu 6.06 LTS: postgresql-8.1 8.1.11-0ubuntu0.6.06.1 postgresql-pltcl-8.1 8.1.11-0ubuntu0.6.06.1Ubuntu 6.10: postgresql-8.1 8.1.11-0ubuntu0.6.10.1 postgresql-pltcl-8.1 8.1.11-0ubuntu0.6.10.1Ubuntu 7.04: postgresql-8.2 8.2.6-0ubuntu0.7.04.1 postgresql-pltcl-8.2 8.2.6-0ubuntu0.7.04.1Ubuntu 7.10: postgresql-8.2 8.2.6-0ubuntu0.7.10.1 postgresql-pltcl-8.2 8.2.6-0ubuntu0.7.10.1In general, a standard system upgrade is sufficient to effect thenecessary changes.Details follow:Nico Leidecker discovered that PostgreSQL did not properlyrestrict dblink functions. An authenticated user could exploitthis flaw to access arbitrary accounts and execute arbitrarySQL queries. (CVE-2007-3278, CVE-2007-6601)It was discovered that the TCL regular expression parser usedby PostgreSQL did not properly check its input. An attackercould send crafted regular expressions to PostgreSQL and causea denial of service via resource exhaustion or database crash.(CVE-2007-4769, CVE-2007-4772, CVE-2007-6067)It was discovered that PostgreSQL executed VACUUM and ANALYZEoperations within index functions with superuser privileges andalso allowed SET ROLE and SET SESSION AUTHORIZATION within indexfunctions. A remote authenticated user could exploit these flawsto gain privileges. (CVE-2007-6600)
More...
