|
|
The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 9.5.1, 9.4.6, 9.3.11, 9.2.15, and 9.1.20. This release fixes two security issues, as well as several bugs found over the last four months. Users vulnerable to the security issues should update their installations immediately; other users should update at the next scheduled downtime.
Security Fixes for Regular Expressions, PL/Java
This release closes security hole CVE-2016-0773, an issue with regular expression (regex) parsing. Prior code allowed users to pass in expressions which included out-of-range Unicode characters, triggering a backend crash. This issue is critical for PostgreSQL systems with untrusted users or which generate regexes based on user input.
The update also fixes CVE-2016-0766, a privilege escalation issue for users of PL/Java. Certain custom configuration settings (GUCS) for PL/Java will now be modifiable only by the database superuser.
Other Fixes and Improvements
In addition to the above, many other issues were patched in this release based on bugs reported by our users over the last few months. This includes multiple fixes for new features introduced in version 9.5.0, as well as refactoring of pg_dump to eliminate a number of chronic issues with backing up EXTENSIONs. Among them are:
- Fix many issues in pg_dump with specific object types
- Prevent over-eager pushdown of HAVING clauses for GROUPING SETS
- Fix deparsing error with ON CONFLICT ... WHERE clauses
- Fix tableoid errors for postgres_fdw
- Prevent floating-point exceptions in pgbench
- Make \det search Foreign Table names consistently
- Fix quoting of domain constraint names in pg_dump
- Prevent putting expanded objects into Const nodes
- Allow compile of PL/Java on Windows
- Fix "unresolved symbol" errors in PL/Python execution
- Allow Python2 and Python3 to be used in the same database
- Add support for Python 3.5 in PL/Python
- Fix issue with subdirectory creation during initdb
- Make pg_ctl report status correctly on Windows
- Suppress confusing error when using pg_receivexlog with older servers
- Multiple documentation corrections and additions
- Fix erroneous hash calculations in gin_extract_jsonb_path()
This update also contains tzdata release 2016a, with updates for Cayman Islands, Metlakatla, Trans-Baikal Territory
(Zabaykalsky Krai), and Pakistan.
Updating
Users of version 9.4 will need to reindex any jsonb_path_ops indexes they have created, in order to fix a persistent issue with missing index entries. Users of other versions who have skipped multiple update releases may need to perform additional post-update steps; see the Release Notes for details.
All PostgreSQL update releases are cumulative. As with other minor releases, users are not required to dump and reload their database or use pg_upgrade in order to apply this update release; you may simply shut down PostgreSQL and update its binaries.
Links:
|
|
|
Full View / NID: 58045 / Submitted by: The Zilla of Zuron
|
|
London, 11 February 2016 - EveryWare Ltd, the real-time analytics specialist, has ‘leapt forward’ in time at IoT Tech Expo Europe 2016, taking place today in London.Speaking today at the event as part of the Connected Industry track, Nigel Maris, Managing Director at EveryWare, presented a hypothetical look back at the rise of IoT from the year 2025 and the impact of disruptive innovation, including how EveryWare technology has helped businesses save money.“Ten years ago...
Source: RealWire
|
|
|
Full View / NID: 58044 / Submitted by: The Zilla of Zuron
|
|
|
Sales double after just three months in US retail stores.Tile, the most successful crowdfunded product of all time, is now the #1 global Bluetooth tracker.London, 11th February 2016: Tile, makers of the world’s leading Bluetooth tracker and companion app, is officially launching in the UK following its announcement that it has now shipped more than 4.5 million Tiles. Tile is a Bluetooth tracker and companion app that helps people find lost possessions such as keys,...
Source: RealWire
|
|
|
Full View / NID: 58043 / Submitted by: The Zilla of Zuron
|
|
|
SafeShare Global teams up with Solfyre to develop offering solving login and fraud issues and revolutionise the cyber security insurance marketLondon - 11th February 2016 - British cybersecurity pioneer Solfyre and London based SafeShare Global, an insurance and technology startup enabling the sharing economy, have today announced a partnership to develop the world’s first identity theft and identity fraud insurance solution. According to a white paper released in 2011 by the Detica and the UK...
Source: RealWire
|
|
|
Full View / NID: 58042 / Submitted by: The Zilla of Zuron
|
|
|
Confirmit selected for multi-year agreement on strength of extensive Market Research and panel management capabilities London, UK and Oslo, Norway and New York, NY, 11 February, 2016: Confirmit has been selected by Home Innovation Research Labs, a research, testing and consulting firm in the home building industry, to power its survey research. Home Innovation selected Confirmit Horizons to replace its existing software due to the strength of Confirmit’s technology, panel management solution and competitive offering....
Source: RealWire
|
|
|
Full View / NID: 58041 / Submitted by: The Zilla of Zuron
|
|
The Official Pattern Release or OPR is Trend Micro's latest compilation of patterns for identified viruses. It is guaranteed to have passed a series of critical tests to ensure that customers get optimum protection from the latest virus threats.
|
|
|
Full View / NID: 58040 / Submitted by: The Zilla of Zuron
|
|
|
Full View / NID: 59427 / Submitted by: The Zilla of Zuron
|
|
Severity Rating: Important
Revision Note: V2.0 (February 10, 2016): Bulletin revised to announce the availability of update 3126041 for Microsoft Windows Vista, Windows Server 2008, Windows Server 2008 for Itanium-based Systems, Windows 8.1, and Windows Server 2012 R2. Customers should apply the applicable updates to be protected from the vulnerabilities discussed in this bulletin. The majority of customers have automatic updating enabled and will not need to take any action because the updates will be downloaded and installed automatically.
Summary: This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an attacker is able to log on to a target system and run a specially crafted application.
|
|
|
Full View / NID: 58037 / Submitted by: The Zilla of Zuron
|
|
|
The Official Pattern Release or OPR is Trend Micro's latest compilation of patterns for identified viruses. It is guaranteed to have passed a series of critical tests to ensure that customers get optimum protection from the latest virus threats.
|
|
|
Full View / NID: 58035 / Submitted by: The Zilla of Zuron
|
|
Replify is looking for new partners/distributors to resell the Replify Accelerator and Backup Accelerator products.
|
|
|
Full View / NID: 58034 / Submitted by: The Zilla of Zuron
|
|
New Design Wins, Large-Scale Enterprise Deployments, and Technology Feature Adoption Show Continued Momentum for 6th Generation AMD A-Series Processors
SUNNYVALE, CA -- (Marketwired) -- 02/10/16 --
AMD (NASDAQ: AMD) today announced increasing momentum for the 6th Generation AMD PRO A-Series mobile processors, based on the introduction of two new HP notebook design wins, new large-scale enterprise deployments, and the expansion of HP adoption of AMD FreeSync™ technology in its notebooks and displays.
The 6th Generation AMD PRO A-Series processors, which efficiently integrate extensive AMD CPU, graphics, security, and video processing IP into a single SoC design, will now power two new HP ...
|
|
|
Full View / NID: 58033 / Submitted by: The Zilla of Zuron
|
|
|
Full View / NID: 58032 / Submitted by: The Zilla of Zuron
|
|
|
IoT Consortium Releases New Developer Tools and Reaches Milestone of More Than 150 MembersFebruary 10, 2016. Portland, Oregon - Today, the Open Interconnect Consortium (OIC) announced the availability of an important update for developers that will help organizations swiftly navigate the OIC’s resources to quickly take advantage of the technologies and infrastructure developed, furthering standardization for the Internet of Things (IoT). “IoT puts a lot of pressure on developers to create applications that work seamlessly....
Source: RealWire
|
|
|
Full View / NID: 58031 / Submitted by: The Zilla of Zuron
|
|
|
Wednesday, February 10th, 2016, Dublin, Ireland: Openmind Networks today announced that leading Belgian operator Proximus has deployed Openmind’s consolidated Traffic Control Platform to replace its legacy SMSC and SMS Firewall in a virtualised environment. The deployment in Proximus’ datacentres was fully migrated and accepted over an 11 month period.Replacing its legacy infrastructure with Openmind’s Traffic Control platform will allow Proximus to consolidate all messaging functions onto a single virtualised platform, reducing the Tier 1 European...
Source: RealWire
|
|
|
Full View / NID: 58030 / Submitted by: The Zilla of Zuron
|
|
|
By Barry Mattacott, marketing director, Wick Hill Group Are industrial control and SCADA (Supervisory Control and Data Acquisition) systems the new frontier, not just for cyber-crime but also for cyberwar? Until recently, when you were at war with a country, you sent in your bombers. First they hit the military targets. Once they had finished those off, they would hit infrastructure, with attacks designed to destroy industry and demoralise the civilian population. Electricity production, oil...
Source: RealWire
|
|
|
Full View / NID: 58029 / Submitted by: The Zilla of Zuron
|
|
|
Sydney, Australia, 10 February 2016: SpeedCast International Limited (SpeedCast), a leading global satellite telecommunications service provider, today announced that its CEO Pierre-Jean (PJ) Beylier has been recognized with the World Teleport Association (WTA) ‘Teleport Executive of the Year’ award. This accolade recognizes Mr Beylier’s outstanding accomplishments at SpeedCast in the past 12 months and his remarkable contributions to the satellite industry as a whole. Mr Beylier was instrumental in the successful growth of the SpeedCast...
Source: RealWire
|
|
|
Full View / NID: 58028 / Submitted by: The Zilla of Zuron
|
|
|
Integrated architecture has already been deployed for one of the top five global service providers worldwideMilan, Italy, 10 February 2016 - Italtel, a leading telecommunications company in Network Functions Virtualization (NFV), managed services and all-IP communication, and Telarix, a market leader in interconnect business optimization solutions, today announced they have jointly defined a complete end-to-end solution for controlling large networks.The solution integrates Telarix’s wholesale business automation suite iXTools and Italtel’s centralized routing and policy server...
Source: RealWire
|
|
|
Full View / NID: 58027 / Submitted by: The Zilla of Zuron
|
|
|
LONDON, U.K., 10 February 2016 - Jebens Mensching LLP, a German boutique law firm specialising in legal, regulatory and tax advice for property transactions, is deploying customer relationship management (CRM) solution, Lexis® InterAction®, from LexisNexis® Enterprise Solutions, a provider of technology solutions to professional services firms. InterAction will expose the depth and breadth of Jebens Mensching’s existing relationships and allow the firm to leverage the relationship intelligence to uncover opportunities for business growth and enhance...
Source: RealWire
|
|
|
Full View / NID: 58026 / Submitted by: The Zilla of Zuron
|
|
|
Reading, UK and Redwood Shores, California - February 10 2016, Zyme, the market leader in the rapidly growing discipline of Channel Data Management (CDM), has today announced that B&O PLAY has signed an agreement to deploy Zyme’s cloud-based CDM solution. The first phase of the initial roll out will be completed by the close of March 2016 but the overall implementation, which will be global, will run until the end of May 2016.B&O PLAY opened...
Source: RealWire
|
|
|
Full View / NID: 58025 / Submitted by: The Zilla of Zuron
|
|
|
Implements proactive and service-oriented NOC solutions using MYCOM OSI’s PrOptima™ network performance management and ProActor™ automation productsLONDON, UK - 10th February 2016 - MYCOM OSI, the leading independent provider of Next Generation Service Assurance, Automation/Orchestration, and Analytics solutions to the world’s largest Communications Service Providers (CSPs), today announced that Globe Telecom has selected MYCOM OSI Service Assurance products and solutions for its OSS transformation project.Globe Telecom is one of the largest CSPs in the Philippines...
Source: RealWire
|
|
|
Full View / NID: 58024 / Submitted by: The Zilla of Zuron
|
|
|
TfL partners with digital preservation specialist Preservica to help preserve and protect 150 years of rare London historyTransport for London (TfL), London’s historic transport network has begun extending its use of the AWS Cloud to protect its archive of over 140,000 digital and digitised files dating back to 1857, including all transport records from the London 2012 Olympic Games.TfL has partnered with Digital Preservation specialist Preservica to transfer its extensive digital collection to the Cloud....
Source: RealWire
|
|
|
Full View / NID: 58023 / Submitted by: The Zilla of Zuron
|
|
|
Nuendo 7 Digital Audio Workstation Integrated with Perforce Helix Collaboration and Version Control Platform Enables Cross-Team Workflows and Eases Audio Production Wokingham (UK) and Hamburg (Germany), February 10, 2016 - Perforce Software and Steinberg Media Technologies today announced the integration of Perforce Helix, the collaboration and version control platform of choice in the gaming industry, with Nuendo 7, the leading digital audio workstation for the games, TV and film industries. The integration allows Nuendo 7...
Source: RealWire
|
|
|
Full View / NID: 58022 / Submitted by: The Zilla of Zuron
|
|
|
During #MWC16 Companies will demonstrate CloudFlare Content Acceleration MEC Application running on integrated platform
YOKNEAM, Israel, February 10, 2016 /PRNewswire/
AMD (NASDAQ:AMD) and Saguna collaborate to create scalable and economical Mobile Edge Computing (MEC) platforms for powering time-sensitive and bandwidth-intensive Internet of Things (IoT) and mobile data and video applications.
With the advent of IoT and the need to connect increasing numbers of connected devices, mobile networks face a tough scalability challenge. The need to secure the large volumes of data and content generated by these connected devices exacerbates the situation.
Addressing these challeng...
|
|
|
Full View / NID: 58021 / Submitted by: The Zilla of Zuron
|
|
|
The Official Pattern Release or OPR is Trend Micro's latest compilation of patterns for identified viruses. It is guaranteed to have passed a series of critical tests to ensure that customers get optimum protection from the latest virus threats.
|
|
|
Full View / NID: 58020 / Submitted by: The Zilla of Zuron
|
|
Replay these 3 vmLIVEs on Pricing & Packaging to learn what’s new: Replay: New 2016 Pricing & Packaging for VMware Compute Virtualization and Management Portfolio (Partner University > Events > vmLIVE > archive) Deep Dive into Pricing & Packaging for vSphere and vSphere with Operations Management Deep Dive into Pricing & Packaging for vRealize Suite […] The post Recommended Training for SDDC Pricing & Packaging appeared first on Partner News.
|
|
|
Full View / NID: 58004 / Submitted by: The Zilla of Zuron
|
|
|
Severity Rating: Critical
Revision Note: V1.0 (February 9, 2016): Bulletin published.
Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted Journal file. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
|
|
|
Full View / NID: 58077 / Submitted by: The Zilla of Zuron
|
|
|
Severity Rating: Critical
Revision Note: V1.1 (February 9, 2016): Revised bulletin to correct the updates replaced for .NET Framework 3.5.1 installed on supported editions of Windows 7 and Windows Server 2008 R2. This is an informational change only. There were no changes to the update files. Customers who have already successfully updated their systems do not need to take any action.
Summary: This security update resolves vulnerabilities in Microsoft Windows, .NET Framework, Microsoft Office, Skype for Business, Microsoft Lync, and Silverlight. The vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded fonts.
|
|
|
Full View / NID: 58060 / Submitted by: The Zilla of Zuron
|
|
|
Severity Rating: Critical
Revision Note: V1.0 (February 9, 2016): Bulletin published.
Summary: This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows Server 2012, Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10, and Windows 10 Version 1511. For more information, see the Affected Software section. The update addresses the vulnerabilities in Adobe Flash Player by updating the affected Adobe Flash libraries contained within Internet Explorer 10, Internet Explorer 11, and Microsoft Edge.
|
|
|
Full View / NID: 58059 / Submitted by: The Zilla of Zuron
|
|
|
Severity Rating: Important
Revision Note: V1.0 (February 9, 2016): Bulletin published.
Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could cause denial of service on a Network Policy Server (NPS) if an attacker sends specially crafted username strings to the NPS, which could prevent RADIUS authentication on the NPS.
|
|
|
Full View / NID: 58058 / Submitted by: The Zilla of Zuron
|
|
|
Severity Rating: Important
Revision Note: V1.0 (February 9, 2016): Bulletin published.
Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker uses the Microsoft Web Distributed Authoring and Versioning (WebDAV) client to improperly validate input.
|
|
|
Full View / NID: 58046 / Submitted by: The Zilla of Zuron
|
|
