Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
Adrian Klaver <adrian.klaver@aklaver.com>
From: Adrian Klaver <adrian.klaver@aklaver.com>
To: "David G. Johnston" <david.g.johnston@gmail.com>
Cc: Subhash Udata <subhashudata@gmail.com>, 김주연 <mysylph@gmail.com>, "pgsql-general@lists.postgresql.org" <pgsql-general@lists.postgresql.org>
Date: 2024-11-22T05:21:50Z
Lists: pgsql-general
On 11/21/24 20:53, David G. Johnston wrote: > On Thursday, November 21, 2024, Adrian Klaver <adrian.klaver@aklaver.com > <mailto:adrian.klaver@aklaver.com>> wrote: > > On 11/21/24 20:31, Subhash Udata wrote: > > Thank you for your detailed response. I would like to clarify my > situation further to ensure I take the appropriate steps. > > Currently, my environment is running *PostgreSQL 15.0*. I > understand that version *15.9* contains the fix for > CVE-2024-10979, as mentioned in the release notes. > > > Whoa, I thought the topic of discussion from your first post and the > email subject was: > > "I am currently using PostgreSQL 11.10 and would like to know if the > CVE-2024-10979 vulnerability affects this version." > > > No, I just think Subhash hijacked this thread. At least the email > address of the OP is a different one. Oops missed that, now it makes sense. > > David J. > -- Adrian Klaver adrian.klaver@aklaver.com