Ụdị ọhụrụ a na-edozi chinchi 25 ma wepụ ihe adịghị ike (CVE-2019-10164) nke nwere ike iduga njupụta nke nchekwa mgbe onye ọrụ gbanwere paswọọdụ ha. N'iji adịghị ike a, onye na-awakpo mpaghara nwere ohere ịnweta PostgreSQL nwere ike, site na ịtọ paswọọdụ dị ogologo, hazie njedebe nke koodu ya na ikike nke onye ọrụ nke DBMS na-agba ọsọ. Na mgbakwunye, enwere ike iji adịghị ike ahụ n'akụkụ onye ọrụ n'oge usoro onye ahịa dabere na libpq na-agafe nyocha SCRAM mgbe onye ọrụ nwetara sava PostgreSQL nke onye mwakpo na-achịkwa. Nsogbu a pụtara na PostgreSQL 10, 11 na 12-beta alaka.
isi: opennet.ru