Opened 6 weeks ago
Closed 5 weeks ago
#21123 closed enhancement (fixed)
postgresql-17.4
| Reported by: | Douglas R. Reno | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 12.3 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New minor version
This fixes serious regressions with the last release:
- Improve behavior of quoting functions in libpq. The fix for CVE-2025-1094 caused the quoting functions to not honor their string length parameters and, in some cases, cause crashes. This problem could be noticeable from a PostgreSQL client library, based on how it is integrated with libpq.
- Fix small memory leak in pg_createsubscriber.
Change History (5)
comment:1 by , 5 weeks ago
| Priority: | normal → elevated |
|---|
comment:2 by , 5 weeks ago
| Milestone: | 12.4 → 12.3 |
|---|
Promote the security fixes for 12.3 following the decision to make another tagging round.
comment:3 by , 5 weeks ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:4 by , 5 weeks ago
Fixed at 48d3638bdd8388f8f7f6ec4d47f5da9567b86159
Security advisory coming shortly
Note:
See TracTickets
for help on using tickets.
Marking as Elevated because of the severity of the regression from the security update