Received: from malur.postgresql.org ([217.196.149.56])
	by arkaria.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1tE15U-004cpX-Ae
	for pgsql-general@arkaria.postgresql.org; Thu, 21 Nov 2024 06:54:48 +0000
Received: from localhost ([127.0.0.1] helo=malur.postgresql.org)
	by malur.postgresql.org with esmtp (Exim 4.94.2)
	(envelope-from <pgsql-general-owner+archive@lists.postgresql.org>)
	id 1tE15S-00D38X-SH
	for pgsql-general@arkaria.postgresql.org; Thu, 21 Nov 2024 06:54:46 +0000
Received: from magus.postgresql.org ([2a02:c0:301:0:ffff::29])
	by malur.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <adrian.klaver@aklaver.com>)
	id 1tE15R-00D38O-WB
	for pgsql-general@lists.postgresql.org; Thu, 21 Nov 2024 06:54:46 +0000
Received: from fhigh-a5-smtp.messagingengine.com ([103.168.172.156])
	by magus.postgresql.org with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <adrian.klaver@aklaver.com>)
	id 1tE15O-00341y-Jq
	for pgsql-general@lists.postgresql.org; Thu, 21 Nov 2024 06:54:45 +0000
Received: from phl-compute-08.internal (phl-compute-08.phl.internal [10.202.2.48])
	by mailfhigh.phl.internal (Postfix) with ESMTP id A46BB11400AB;
	Thu, 21 Nov 2024 01:54:40 -0500 (EST)
Received: from phl-mailfrontend-01 ([10.202.2.162])
  by phl-compute-08.internal (MEProxy); Thu, 21 Nov 2024 01:54:40 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aklaver.com; h=
	cc:content-transfer-encoding:content-type:content-type:date:date
	:from:from:in-reply-to:in-reply-to:message-id:mime-version
	:references:reply-to:subject:subject:to:to; s=fm3; t=1732172080;
	 x=1732258480; bh=yEjkgilR+izPkwoFValXdp07xmdatePvZ0PyEH8xlC0=; b=
	MxVzr4GpLgQzTjZmigXDHwxeSlr4IAje3e39wye3hqW1kzd05d3fhbBMV3dbS4JU
	fpsYx284J8JZ28ekwCwC9nbJWlx8VsTZiBJpddV4z2IkJGa/TblY11da+eycszUr
	R5a4cyVOsvFTWKMPpj37vCIXvGbFpe0f7Ka56bcOS4U7teuM4G32PrEIRy07lyFc
	Sk1WHP63AXJ1KBnuSwv8MSeqkbiSC2zPRTlgrvp9v/UtEKLJz783bk64h9w0Wvyx
	fklvDmxc5Kfvm8+oA0MC8zDAD02HGfBIXW401f7xI04f0cm5GZb5OH+ztRrLmF3/
	tQH5oYKfdFhn42R9O2etMw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=
	messagingengine.com; h=cc:content-transfer-encoding:content-type
	:content-type:date:date:feedback-id:feedback-id:from:from
	:in-reply-to:in-reply-to:message-id:mime-version:references
	:reply-to:subject:subject:to:to:x-me-proxy:x-me-sender
	:x-me-sender:x-sasl-enc; s=fm1; t=1732172080; x=1732258480; bh=y
	EjkgilR+izPkwoFValXdp07xmdatePvZ0PyEH8xlC0=; b=Db99lrmZpZEptxca8
	rj/ii0R4oIZNJrojYjDBsUu8FJ/Vma9Og7vHOf6AcMGVxP5yKIrO4Gy75MVTE2g7
	RzwJh3MAfZflQDULT/E9ijRf+TtkVyDur9SG0qaNI3EVyuCTh40uezowbcs+5Wbj
	h8F0HdRubm+PBEIbreXnJ608+5RDrlMrLDB64o9DtIVPuF4fHM1Rj2FLYr33uecc
	+mVDatXX4UAlxF6pjorTqmZkFt1SRcEWVIzUXxms58dyVhfz3m+4BfPc540AplcI
	mqnhGh7ITupu7mmRY4pDj5s0LQzecBcUXX4kIiGlHh6Lww6RgWkDmu9GXqRHRQ3V
	5wdJg==
X-ME-Sender: <xms:MNk-Z0k-BzOXsDScgRzBT4R07aDpzf35_4cyjHnVC8oXVckucNoEdw>
    <xme:MNk-Zz03TT11IeaTDRe1-2rtUjZuxHkhtmj1icflSqqgowQhDBY5SLVWqFFHIGRJ6
    PgaUpef5dbfqT0>
X-ME-Received: <xmr:MNk-ZyqrHUMa2grU5JvDO24EFMgXYKvf8ROnj_WouqdJ3QRvaVhLTdasRng0nTPDO_G1hlVeVQvQuByXTEVaMQpLP6TZj3fx>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefuddrfeehgdellecutefuodetggdotefrodftvf
    curfhrohhfihhlvgemucfhrghsthforghilhdpggftfghnshhusghstghrihgsvgdpuffr
    tefokffrpgfnqfghnecuuegrihhlohhuthemuceftddtnecunecujfgurhepkfffgggfuf
    fvfhfhjggtgfesthekredttddvjeenucfhrhhomheptegurhhirghnucfmlhgrvhgvrhcu
    oegrughrihgrnhdrkhhlrghvvghrsegrkhhlrghvvghrrdgtohhmqeenucggtffrrghtth
    gvrhhnpeelgeevkeekkeeuiefgtdevieeluefhfedufeetkeejffekjeeujeehgeehgeek
    tdenucffohhmrghinhepphhoshhtghhrvghsqhhlrdhorhhgnecuvehluhhsthgvrhfuih
    iivgeptdenucfrrghrrghmpehmrghilhhfrhhomheprggurhhirghnrdhklhgrvhgvrhes
    rghklhgrvhgvrhdrtghomhdpnhgspghrtghpthhtohepvddpmhhouggvpehsmhhtphhouh
    htpdhrtghpthhtohepmhihshihlhhphhesghhmrghilhdrtghomhdprhgtphhtthhopehp
    ghhsqhhlqdhgvghnvghrrghlsehlihhsthhsrdhpohhsthhgrhgvshhqlhdrohhrgh
X-ME-Proxy: <xmx:MNk-ZwkJBbfn8N4wnItFZ1Z2DEq8MCbHhV1oy3Z3gCltK24Vx6mTgQ>
    <xmx:MNk-Zy2z0tFVE1AxYXMQJhqzWszvmgGWjcA9i3d27CvP-UbRS7-onw>
    <xmx:MNk-Z3tUE1jVF0WhLwuamcXigrQ4tENy4Y0TmaMfEkw7U10OmHdKXw>
    <xmx:MNk-Z-ULI9xtMQCkbWWTtT_cysEfgBxOZv1ueB5f4Y65knu6DC1uAQ>
    <xmx:MNk-ZwAZvn7K1SpaXKWTJ7FLc4LY6Jl_JEkll8rDMMy7HeOlQIO4Ea24>
Feedback-ID: i76984098:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Thu,
 21 Nov 2024 01:54:39 -0500 (EST)
Message-ID: <7b5846ac-c16e-48d3-b548-99a772a528c5@aklaver.com>
Date: Wed, 20 Nov 2024 22:54:38 -0800
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
To: =?UTF-8?B?6rmA7KO87Jew?= <mysylph@gmail.com>,
 pgsql-general@lists.postgresql.org
References: <CAONZJQkaLtHeNz3P5wO8-EWPjOJ1M5fgyp8x4Mc4bb_U9n9_6g@mail.gmail.com>
Content-Language: en-US
From: Adrian Klaver <adrian.klaver@aklaver.com>
In-Reply-To: <CAONZJQkaLtHeNz3P5wO8-EWPjOJ1M5fgyp8x4Mc4bb_U9n9_6g@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
List-Id: <pgsql-general.lists.postgresql.org>
List-Help: <https://lists.postgresql.org/manage/>
List-Subscribe: <https://lists.postgresql.org/manage/>
List-Post: <mailto:pgsql-general@lists.postgresql.org>
List-Owner: <mailto:pgsql-general-owner@lists.postgresql.org>
List-Archive: <https://www.postgresql.org/list/pgsql-general>
Archived-At: <https://www.postgresql.org/message-id/7b5846ac-c16e-48d3-b548-99a772a528c5%40aklaver.com>
Precedence: bulk

On 11/20/24 22:44, 김주연 wrote:
> Hello, I am currently using PostgreSQL 11.10 and would like to know if 
> the CVE-2024-10979 vulnerability affects this version.

Postgres 11 is past EOL, see:

https://www.postgresql.org/support/versioning/


> If it does impact my version, I would like to know which version I 
> should upgrade to.

Any version from 13+.

-- 
Adrian Klaver
adrian.klaver@aklaver.com