public inbox for [email protected]
help / color / mirror / Atom feedFrom: Adrian Klaver <[email protected]>
To: Bruce Momjian <[email protected]>
To: Greg Sabino Mullane <[email protected]>
Cc: Matthias Apitz <[email protected]>
Cc: Laurenz Albe <[email protected]>
Cc: Subhash Udata <[email protected]>
Cc: David G. Johnston <[email protected]>
Cc: 김주연 <[email protected]>
Cc: [email protected] <[email protected]>
Subject: Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
Date: Sat, 23 Nov 2024 11:19:09 -0800
Message-ID: <[email protected]> (raw)
In-Reply-To: <[email protected]>
References: <CAONZJQkaLtHeNz3P5wO8-EWPjOJ1M5fgyp8x4Mc4bb_U9n9_6g@mail.gmail.com>
<[email protected]>
<CAD=40Z3G8z6d1BMDmQVAAPWzCzK5kbU9wWTCZA58qmq8-L=eoA@mail.gmail.com>
<CAKFQuwbW-5yyVPCjyTJ0uwZZvn9J94s1XzuFnoBbMXp3BC3XyQ@mail.gmail.com>
<CAD=40Z2+84YNSM7oMb4QBpuAaadk=9XRw3PGEu5Ui_YsWpmtFA@mail.gmail.com>
<[email protected]>
<Z0A6Eg2FH2Nb5sWO@pureos>
<[email protected]>
<CAKAnmmLHR_WfR0yZhU9c_vT-hTU-T+N84mEvL6tTELoMLvySfw@mail.gmail.com>
<[email protected]>
On 11/23/24 10:57, Bruce Momjian wrote:
> On Sat, Nov 23, 2024 at 01:30:13PM -0500, Greg Sabino Mullane wrote:
>> On Sat, Nov 23, 2024 at 1:10 PM Bruce Momjian <[email protected]> wrote:
>>
>> and say bounce the database server and install the binaries. What I
>> have never considered before, and I should have, is the complexity of
>> doing this for many remote servers. Can we improve our guidance for
>> these cases?
>>
>>
>> Hmm I'm not sure what else we can say. Our upgrade process is already
>> drop-dead-simple, especially compared to many (most?) other products out there.
>> People painting themselves into corners is not something we can really help
>> with.
>
> I am wondering if we can highlight which upgrades are most important for
> users who have complex upgrade processes. Maybe CVEs and corruption
> fixes?
Personally I would point then at:
https://www.postgresql.org/list/pgsql-announce/
and/or:
https://www.postgresql.org/docs/release/
I would think that informs users and let's them determine what is
important to their situation.
--
Adrian Klaver
[email protected]
view thread (25+ messages) latest in thread
reply
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Reply to all the recipients using the --to and --cc options:
reply via email
To: [email protected]
Cc: [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected], [email protected]
Subject: Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10
In-Reply-To: <[email protected]>
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
This inbox is served by agora; see mirroring instructions
for how to clone and mirror all data and code used for this inbox