fa'afouga fa'asa'o mo lala PostgreSQL lagolago uma: , , , и , o lo'o i ai se vaega o fa'aleleia o bug. Fa'asalalau fa'afouga mo lala 9.4 seia oo ia Tesema 2019, 9.5 seia oo ia Ianuari 2021, 9.6 seia oo ia Setema 2021, 10 seia oo ia Oketopa 2022, 11 seia oo ia Novema 2023.
O lomiga fou e sili atu nai lo le 60 bugs ma faʻaumatia faʻafitauli:
- E lua faʻafitauli (CVE-2019-10127, CVE-2019-10128) e faʻapitoa i le Windows platform ma faʻaalia i tagata faʻapipiʻi mai EnterpriseDB ma BigSQL, lea e leʻi setiina ai aia tatau avanoa i le faʻamaumauga o faʻamaumauga, lea na faʻatagaina soʻo se tagata faʻaoga Windows e le faʻaaogaina e amatalia. code faʻatinoina ile PostgreSQL tulaga tautua.
- O le CVE-2019-10129 faʻafitauli e aliali mai i le PostgreSQL 11 ma faʻatagaina se tagata faʻaoga e faitau le faʻaogaina o mea e manatua ai se faʻagaioiga o le server e ala i le tuʻuina atu o se talosaga INSERT faʻapitoa i se laulau vaeluaga.
- Vulnerability CVE-2019-10130 e mafai ai ona e faitau i tulaga taua o faʻamaumauga e faʻatapulaʻaina ai le avanoa.
O faʻamautu faʻamau e aofia ai le faʻaleagaina o le lisi pe a faʻatinoina le "ALTER TABLE" i luga o se laulau vaeluaga, faʻalavelave le server pe a tupu se mea sese pe a taumafai e faʻasaoina le faʻamalama i le va o fefaʻatauaiga, faʻafitauli faʻatinoga pe a toe faʻafoʻi fefaʻatauaiga e aofia ai le tele o laulau, leai se lagolago mo le “FAITAU LAVA AFAI E LEAI” fa'aaliga E IAI .. AS EXECUTE ..", ua galo le manatua.
puna: opennet.ru