AVG-488 log
| Package | postgresql-old-upgrade |
| Status | Not affected |
| Severity | High |
| Type | privilege escalation |
| Affected | 9.6.5-1 |
| Fixed | 9.6.6-1 |
| Current | 17.7-1 [extra] |
| Ticket | None |
| Created | Fri Nov 10 12:30:46 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-12172 | High | No | Privilege escalation | A vulnerability has been discovered in PostgreSQL when the startup log file for the postmaster (in newer releases, "postgres") process was opened while the... |
| References |
|---|
https://www.postgresql.org/about/news/1801/ |
| Notes |
|---|
Arch Linux is not using the vulnerable upstream startup script or any other setup mechanism that is suffering from the mentioned issue. |