MDVSA-2011:161 -- Mandriva postgresqlID: oval:org.secpod.oval:def:301062 | Date: (C)2012-01-07 (M)2024-04-29 |
Class: PATCH | Family: unix |
A vulnerability was discovered and corrected in postgresql: contrib/pg_crypto's blowfish encryption code could give wrong results on platforms where char is signed , leading to encrypted passwords being weaker than they should be . Additionally corrected ossp-uuid packages as well as corrected support in postgresql 9.0.x are being provided for Mandriva Linux 2011. This update provides a solution to this vulnerability.
Platform: |
Mandriva Linux 2010.1 |