-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

##
## Patch description of patch f1b45b741bf9a13090640cc43f58ee08
##

Kind: security

Shortdescription.english:  Security update for PostgreSQL

Longdescription.english:

   Applies to

   Package:
   postgresql,postgresql-libs,postgresql-server,postgresql-deve
   l,postgresql-tcl,postgresql-odbc,postgresql-perl,postgresql-
   python,postgresql-jdbc
   Product(s):

   Release: 20050207
   Obsoletes: none

  Indications

   At least installations who allow unprivileged database users
   to execute arbitrary SQL statements should upgrade.

  Contraindications

   None.

  Problem description

   This update fixes the possibility for unprivileged users to
   load and execute arbitray code from shared libraries via the
   LOAD SQL statement in the database backend.

  Solution

   Please install the updates provided at the location noted
   below.

  Installation notes

   This update is provided as an RPM package that can easily be
   installed onto a running system by using this command:
rpm -Fvh postgresql.rpm postgresql-libs.rpm postgresql-server.rpm pos
tgresql-devel.rpm postgresql-tcl.rpm postgresql-odbc.rpm postgresql-p
erl.rpm postgresql-python.rpm postgresql-jdbc.rpm

   Note:
   Please make sure that the PostgreSQL backend is not running
   during the update.
Hsilgne.noitpircsedgnol:

Size: 4387

Preinformation.english:
Please make sure that the PostgreSQL backend is not running 
during the update.

Hsilgne.noitamrofnierp:

MinYaST1Version:
MinYaST2Version:
UpdateOnlyInstalled: true

Packages:
##
## -----> postgresql <-----
##
Filename: postgresql.rpm
Label: PostgreSQL - the Database
Series: i586
Size: 823107 445583
PatchRpmBasedOn: 7.2.2-35 7.2.2-90 7.2.6-2
PatchRpmSize: 823107 212467
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Tools
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: postgresql-libs /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libcrypt.so.1 libcrypto.so.0.9.6 libdl.so.2 libm.so.6 libncurses.so.5 libnsl.so.1 libpq.so.2 libreadline.so.4 libresolv.so.2 libssl.so.0.9.6 libz.so.1 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: 
##
## -----> postgresql-devel <-----
##
Filename: postgresql-devel.rpm
Label: PostgreSQL development header files and libraries
Series: i586
Size: 5338349 1691447
PatchRpmBasedOn: 7.2.2-35 7.2.6-2
PatchRpmSize: 5338349 1422332
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Tools
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: postgresql = 7.2.7 /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libcrypt.so.1 libcrypto.so.0.9.6 libdl.so.2 libm.so.6 libncurses.so.5 libnsl.so.1 libreadline.so.4 libresolv.so.2 libssl.so.0.9.6 libz.so.1 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_devel   pg_ifa:/usr/lib/pgsql/bin/ecpg
##
## -----> postgresql-jdbc <-----
##
Filename: postgresql-jdbc.rpm
Label: Files needed for Java programs to access a PostgreSQL database
Series: i586
Size: 265686 173261
PatchRpmBasedOn: 7.2.2-35
PatchRpmSize: 265686 16972
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_jdbc   pg_iface:/usr/lib/pgsql/lib/postgresql.jar
##
## -----> postgresql-libs <-----
##
Filename: postgresql-libs.rpm
Label: The shared libraries required for any PostgreSQL clients.
Series: i586
Size: 169286 82466
PatchRpmBasedOn: 7.2.2-35 7.2.6-2
PatchRpmSize: 169286 82528
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: sh-utils fileutils /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libcrypt.so.1 libcrypt.so.1(GLIBC_2.0) libcrypto.so.0.9.6 libdl.so.2 libgcc_s.so.1 libgcc_s.so.1(GCC_3.0) libm.so.6 libnsl.so.1 libpq.so.2 libresolv.so.2 libssl.so.0.9.6 libstdc++.so.5 libstdc++.so.5(CXXABI_1.2) libstdc++.so.5(GLIBCPP_3.2) rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: libpq.so.2.1   libpq.so.2.0   libpq.so   pg_ifa   pg_lib   postgresql-lib   libecpg.so.3   libpgeasy.so.2   libpq++.so.4   libpq.so.2
##
## -----> postgresql-odbc <-----
##
Filename: postgresql-odbc.rpm
Label: The ODBC driver needed for accessing a PostgreSQL DB using ODBC
Series: i586
Size: 221432 106574
PatchRpmBasedOn: 7.2.2-178 7.2.2-35
PatchRpmSize: 221432 106514
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Authornameemail:
Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libm.so.6 libm.so.6(GLIBC_2.0) libnsl.so.1 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_odbc   pg_iface:/usr/lib/pgsql/odbcinst.ini   libpsqlodbc.so.0
##
## -----> postgresql-perl <-----
##
Filename: postgresql-perl.rpm
Label: Development module needed for Perl code to access a PostgreSQL DB
Series: i586
Size: 200864 84481
PatchRpmBasedOn: 7.2.2-35
PatchRpmSize: 200864 65136
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: perl >= 5.004-4 ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1.3) libpq.so.2 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_iface   pg_perl   pg_iface:/usr/lib/perl5/site_perl/5.005/i586-linux/auto/Pg/Pg.so   Pg.so
##
## -----> postgresql-python <-----
##
Filename: postgresql-python.rpm
Label: Development module for Python code to access a PostgreSQL DB
Series: i586
Size: 1070044 401021
PatchRpmBasedOn: 7.2.2-35
PatchRpmSize: 1070044 381485
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: python >= 1.5 python-egenix-mx-base ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.2) libdl.so.2 libdl.so.2(GLIBC_2.0) libdl.so.2(GLIBC_2.1) libm.so.6 libm.so.6(GLIBC_2.0) libpq.so.2 libpthread.so.0 libpthread.so.0(GLIBC_2.0) libpthread.so.0(GLIBC_2.1) libpthread.so.0(GLIBC_2.2) libutil.so.1 libutil.so.1(GLIBC_2.0) rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_pyth   lib_pgmodule.so.0   libplpython.so.0
##
## -----> postgresql-server <-----
##
Filename: postgresql-server.rpm
Label: The programs needed to create and run a PostgreSQL server
Series: i586
Size: 3407459 1458454
PatchRpmBasedOn: 7.2.2-134 7.2.2-35 7.2.2-79 7.2.6-2
PatchRpmSize: 3407459 1384793
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Servers
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: /usr/sbin/useradd /usr/sbin/groupadd /sbin/chkconfig aaa_base fillup fileutils postgresql = 7.2.7 logrotate /bin/sh /bin/bash /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.2) libcrypt.so.1 libcrypt.so.1(GLIBC_2.0) libcrypto.so.0.9.6 libdl.so.2 libdl.so.2(GLIBC_2.0) libdl.so.2(GLIBC_2.1) libm.so.6 libm.so.6(GLIBC_2.0) libncurses.so.5 libnsl.so.1 libpq.so.2 libreadline.so.4 libresolv.so.2 libssl.so.0.9.6 libz.so.1 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_serv   postgres:/usr/lib/pgsql/bin/postmaster   libplpgsql.so.1
##
## -----> postgresql-tcl <-----
##
Filename: postgresql-tcl.rpm
Label: A Tcl client library, and the PL/Tcl procedural language for PostgreSQL
Series: i586
Size: 88941 49660
PatchRpmBasedOn: 7.2.2-35
PatchRpmSize: 88941 44883
Buildtime: 1107447066
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Databases/Clients
Copyright: X11/MIT
AuthorName: Andrew Yu <andrew@CS.Berkeley.edu>
Jolly Chen <jolly@CS.Berkeley.edu>
Bruce Momjian <maillist@candle.pha.pa.us>
Thomas G. Lockhart <lockhart@alumni.caltech.edu>
Tom Lane <tgl@sss.pgh.pa.us>
The Hermit Hacker <scrappy@hub.org>
etc.
AuthorAddress:
Version: 7.2.7-2
StartCommand:
Obsoletes:
Requires: /bin/sh /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1.3) libcrypt.so.1 libcrypto.so.0.9.6 libdl.so.2 libm.so.6 libncurses.so.5 libnsl.so.1 libpgtcl.so.2 libpq.so.2 libreadline.so.4 libresolv.so.2 libssl.so.0.9.6 libtcl8.4.so libz.so.1 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: pg_tcl   pg_ifa:/usr/lib/pgsql/bin/pgtclsh   libpgtcl.so.2   pltcl.so
Segakcap:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFCENLtqE7a6JyACsoRApf3AJ9tfHkA0WiY7jC91F3LFYAgsX9lsACd
EJvpGNmUu3NBnHVljz9JW6fgUGg=
=A7vd
-----END PGP SIGNATURE-----