| Errata ID | 475 |
|---|---|
| Date | 2018-08-15 |
| Source package | postgresql-9.4 |
| Fixed in version | 9.4.19-0+deb8u1 |
| Description | This update addresses the following issues: * pg_upgrade creates file of sensitive metadata under prevailing umask (CVE-2018-1053) * Uncontrolled search path element in pg_dump and other client applications (CVE-2018-1058) * Certain host connection parameters defeat client-side security defenses (CVE-2018-10915) |
| Additional notes | |
| CVE ID | CVE-2018-1058 CVE-2018-1053 CVE-2018-10915 |
| UCS Bug number | #47527 |
