Copied from
ubuntu zesty in
2762 - 2017-05-15
by Timescale
Changelog
postgresql-9.6 (9.6.3-0ubuntu0.17.04) zesty; urgency=medium
* New upstream release (LP: #1690730)
- Restrict visibility of pg_user_mappings.umoptions, to protect passwords
stored as user mapping options (CVE-2017-7486)
- Prevent exposure of statistical information via leaky operators
(CVE-2017-7484)
- Restore libpq's recognition of the PGREQUIRESSL environment variable
(CVE-2017-7485)
- A dump/restore is not required for those running 9.6.X.
- However, if you use foreign data servers that make use of user passwords
for authentication, see the first changelog entry.
- Also, if you are using third-party replication tools that depend on
"logical decoding", see the fourth changelog entry.
- Details about other changes at full changelog:
https://www.postgresql.org/docs/9.6/static/release-9-6-3.html
-- Christian Ehrhardt <email address hidden> Mon, 15 May 2017 08:46:09 +0200