Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10

Adrian Klaver <adrian.klaver@aklaver.com>

From: Adrian Klaver <adrian.klaver@aklaver.com>
To: "David G. Johnston" <david.g.johnston@gmail.com>
Cc: Subhash Udata <subhashudata@gmail.com>, 김주연 <mysylph@gmail.com>, "pgsql-general@lists.postgresql.org" <pgsql-general@lists.postgresql.org>
Date: 2024-11-22T05:21:50Z
Lists: pgsql-general
On 11/21/24 20:53, David G. Johnston wrote:
> On Thursday, November 21, 2024, Adrian Klaver <adrian.klaver@aklaver.com 
> <mailto:adrian.klaver@aklaver.com>> wrote:
> 
>     On 11/21/24 20:31, Subhash Udata wrote:
> 
>         Thank you for your detailed response. I would like to clarify my
>         situation further to ensure I take the appropriate steps.
> 
>         Currently, my environment is running *PostgreSQL 15.0*. I
>         understand that version *15.9* contains the fix for
>         CVE-2024-10979, as mentioned in the release notes.
> 
> 
>     Whoa, I thought the topic of discussion from your first post and the
>     email subject was:
> 
>     "I am currently using PostgreSQL 11.10 and would like to know if the
>     CVE-2024-10979 vulnerability affects this version."
> 
> 
> No, I just think Subhash hijacked this thread.  At least the email 
> address of the OP is a different one.

Oops missed that, now it makes sense.

> 
> David J.
> 

-- 
Adrian Klaver
adrian.klaver@aklaver.com