Izinguqulo ezintsha zilungisa iziphazamisi ezingu-25 futhi zisuse ukuba sengozini (CVE-2019-10164) okungaholela ekuchichimeni kwebhafa lapho umsebenzisi eshintsha iphasiwedi yakhe. Esebenzisa lobu bungozi, umhlaseli wasendaweni onokufinyelela ku-PostgreSQL angakwazi, ngokusetha iphasiwedi ende kakhulu, ahlele ukukhishwa kwekhodi yakhe ngamalungelo omsebenzisi lapho i-DBMS isebenza ngaphansi kwayo. Ngaphezu kwalokho, ubungozi bungasetshenziswa ohlangothini lomsebenzisi phakathi nenqubo yeklayenti elisekelwe ku-libpq elidlula ukuqinisekiswa kwe-SCRAM lapho umsebenzisi efinyelela iseva ye-PostgreSQL elawulwa umhlaseli. Inkinga ivela emagatsheni e-PostgreSQL 10, 11 kanye ne-12-beta.
Source: opennet.ru