Iinguqulelo ezintsha zilungisa ii-bugs ezingama-25 kwaye zisuse ubungozi (CVE-2019-10164) obunokukhokelela ekuphuphumeni kwebuffer xa umsebenzisi etshintsha igama eliyimfihlo. Ukusebenzisa obu buthathaka, umhlaseli wendawo onokufikelela kwi-PostgreSQL unako, ngokubeka igama eligqithisiweyo elide kakhulu, aququzelele ukuphunyezwa kwekhowudi yakhe ngamalungelo omsebenzisi apho i-DBMS iqhuba khona. Ukongeza, ubuthathaka bunokusetyenziswa kwicala lomsebenzisi ngexesha lenkqubo ye-libpq-based client edlula ukuqinisekiswa kwe-SCRAM xa umsebenzisi efikelela kwiseva ye-PostgreSQL elawulwa ngumhlaseli. Ingxaki ibonakala kwi-PostgreSQL 10, 11 kunye ne-12-beta yamasebe.
umthombo: opennet.ru