| From: | Mads(dot)Tandrup(at)schneider-electric(dot)com |
|---|---|
| To: | pgsql-general(at)postgresql(dot)org |
| Subject: | CVE-2013-1899 security issue and limited IP addresses in pg_hba.conf |
| Date: | 2013-04-04 16:39:22 |
| Message-ID: | OF98AB775E.9F1D2997-ONC1257B43.005B7ED1-C1257B43.005B7ED1@apcc.com |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-general |
<font face="Default Sans Serif,Verdana,Arial,Helvetica,sans-serif" size="2"><div>Hi All</div><div><br></div><div>I'm trying to understand the implications of the latest security fix to postgresql [1].</div><div><br></div><div>We have a setup were we in pg_hba.conf have limited the allowed IP addresses of the clients. But does anyone know if CVE-2013-1899 allows an arbitrary attacker to use the exploits described in [1]?</div><div><br></div><div>We are using PostgreSQL 8.4.</div><div><br></div><div>Best regards,</div><div>Mads</div><div><br></div><div>[1] http://www.postgresql.org/support/security/faq/2013-04-04/<br><br></div><div></div></font>
| Attachment | Content-Type | Size |
|---|---|---|
| unknown_filename | text/html | 663 bytes |
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Devrim Gündüz | 2013-04-04 16:43:34 | Re: CVE-2013-1899 security issue and limited IP addresses in pg_hba.conf |
| Previous Message | Merlin Moncure | 2013-04-04 16:35:57 | Re: Why not cascade? (was: Using varchar primary keys) |