fa'afouga fa'asa'o mo lala PostgreSQL lagolago uma: , , , и , o lo'o i ai se vaega o fa'aleleia o bug. Fa'asalalau fa'afouga mo lala 9.4 seia oo ia Tesema 2019, 9.5 seia oo ia Ianuari 2021, 9.6 seia oo ia Setema 2021, 10 seia oo ia Oketopa 2022, 11 seia oo ia Novema 2023.
O lomiga fou e sili atu nai lo le 60 bugs ma faʻaumatia faʻafitauli:
- E lua vaivaiga (CVE-2019-10127, CVE-2019-10128) e patino i le fausaga fa'avae Windows ma aliali mai i totonu o faʻapipiʻi mai EnterpriseDB ma BigSQL, lea e leʻi faʻatulagaina ai aia tatau talafeagai i le faʻasinomaga o faʻamaumauga, lea na faʻatagaina ai soʻo se tagata faʻaoga e leʻi faʻatagaina. Windows amata le faʻatinoina o tulafono i le tulaga tautua a le PostgreSQL.
- O le CVE-2019-10129 faʻafitauli e aliali mai i le PostgreSQL 11 ma faʻatagaina se tagata faʻaoga e faitau le faʻaogaina o mea e manatua ai se faʻagaioiga o le server e ala i le tuʻuina atu o se talosaga INSERT faʻapitoa i se laulau vaeluaga.
- Vulnerability CVE-2019-10130 e mafai ai ona e faitau i tulaga taua o faʻamaumauga e faʻatapulaʻaina ai le avanoa.
O faʻamautu faʻamau e aofia ai le faʻaleagaina o le lisi pe a faʻatinoina le "ALTER TABLE" i luga o se laulau vaeluaga, faʻalavelave le server pe a tupu se mea sese pe a taumafai e faʻasaoina le faʻamalama i le va o fefaʻatauaiga, faʻafitauli faʻatinoga pe a toe faʻafoʻi fefaʻatauaiga e aofia ai le tele o laulau, leai se lagolago mo le “FAITAU LAVA AFAI E LEAI” fa'aaliga E IAI .. AS EXECUTE ..", ua galo le manatua.
puna: opennet.ru
