1
Candidate: CVE-2016-3065
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3065
5
http://www.postgresql.org/about/news/1656/
6
http://git.postgresql.org/gitweb/?p=postgresql.git;a=commitdiff;h=bf78a6f107949fdfb513d1b45e30cefe04e09e4f
8
The (1) brin_page_type and (2) brin_metapage_info functions in the
9
pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows
10
attackers to bypass intended access restrictions and consequently obtain
11
sensitive server memory information or cause a denial of service (server
12
crash) via a crafted bytea value in a BRIN index page.
15
sbeattie> affects 9.5 only
18
Discovered-by: Andreas Seltenreich
21
Patches_postgresql-9.5:
22
upstream_postgresql-9.5: released (9.5.2)
23
precise_postgresql-9.5: DNE
24
trusty_postgresql-9.5: DNE
25
vivid/ubuntu-core_postgresql-9.5: DNE
26
vivid/stable-phone-overlay_postgresql-9.5: DNE
27
wily_postgresql-9.5: DNE
28
devel_postgresql-9.5: not-affected (9.5.2-1)
30
Patches_postgresql-9.4:
31
upstream_postgresql-9.4: not-affected (9.5 only)
32
precise_postgresql-9.4: DNE
33
trusty_postgresql-9.4: DNE
34
vivid/ubuntu-core_postgresql-9.4: DNE
35
vivid/stable-phone-overlay_postgresql-9.4: DNE
36
wily_postgresql-9.4: not-affected (9.5 only)
37
devel_postgresql-9.4: DNE
39
Patches_postgresql-9.3:
40
upstream_postgresql-9.3: not-affected (9.5 only)
41
precise_postgresql-9.3: DNE
42
trusty_postgresql-9.3: not-affected (9.5 only)
43
vivid/ubuntu-core_postgresql-9.3: DNE
44
vivid/stable-phone-overlay_postgresql-9.3: DNE
45
wily_postgresql-9.3: DNE
46
devel_postgresql-9.3: DNE
48
Patches_postgresql-9.1:
49
upstream_postgresql-9.1: not-affected (9.5 only)
50
precise_postgresql-9.1: not-affected (9.5 only)
51
trusty_postgresql-9.1: not-affected (9.5 only)
52
vivid/ubuntu-core_postgresql-9.1: DNE
53
vivid/stable-phone-overlay_postgresql-9.1: DNE
54
wily_postgresql-9.1: DNE
55
devel_postgresql-9.1: DNE
57
Patches_postgresql-8.4:
58
upstream_postgresql-8.4: not-affected (9.5 only)
59
precise_postgresql-8.4: not-affected (9.5 only)
60
trusty_postgresql-8.4: DNE
61
vivid/ubuntu-core_postgresql-8.4: DNE
62
vivid/stable-phone-overlay_postgresql-8.4: DNE
63
wily_postgresql-8.4: DNE
64
devel_postgresql-8.4: DNE