PostgreSQL Repeat Function Buffer Overflow Vulnerability Solution:
Gentoo Linux has recommended that users who are running dev-db/postgresql-7.2.1-r2 and earlier to update their systems using the following commands. Further details are provided in the referenced advisory.
emerge rsync
emerge postgresql
emerge clean
FreeBSD has released a Security Notice FreeBSD-SN-02:05. Users of FreeBSD systems are strongly urged to upgrade their ports tree to fix various reported issues. Further information can be found in the referenced Security Notice.
Debian has released an advisory with fixes. See the attached advisory (DSA 165-1) for details on obtaining fixes.
Conectiva Linux has fixes available. Further information is available in the referenced advisory.
S.u.S.E. has released an advisory. Fixes for Sparc and Alpha platforms will be forthcoming. Further upgrading instructions are available in the referenced advisory.
Red Hat has released advisories (RHSA-2003:001-16 and RHSA-2003:010-10) which address this and other issues. Please see the attached advisories for details on obtaining and applying fixes.
Mandrake has made fixes available. See referenced advisory MDKSA-2002:062-1 for additional details.
Trustix Secure Linux has released an advisory (TSLSA-2003-0004) which addresses this and other PostgreSQL issues. Users are advised to upgrade as soon as possible.
WireX has released advisory IMNX-2003-7+-005-01 to address this issue.
Fixes available:
PostgreSQL PostgreSQL 6.3.2
PostgreSQL PostgreSQL 6.5.3
PostgreSQL PostgreSQL 7.0.2
PostgreSQL PostgreSQL 7.0.3
PostgreSQL PostgreSQL 7.1
PostgreSQL PostgreSQL 7.1.1
PostgreSQL PostgreSQL 7.1.2
PostgreSQL PostgreSQL 7.1.3
PostgreSQL PostgreSQL 7.2
PostgreSQL PostgreSQL 7.2.1
