Received: from malur.postgresql.org ([217.196.149.56]) by arkaria.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1tEPgU-007C5F-4a for pgsql-general@arkaria.postgresql.org; Fri, 22 Nov 2024 09:10:38 +0000 Received: from localhost ([127.0.0.1] helo=malur.postgresql.org) by malur.postgresql.org with esmtp (Exim 4.94.2) (envelope-from ) id 1tEPgS-006ul3-PK for pgsql-general@arkaria.postgresql.org; Fri, 22 Nov 2024 09:10:36 +0000 Received: from makus.postgresql.org ([2001:4800:3e1:1::229]) by malur.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1tEPgS-006ukv-Cp for pgsql-general@lists.postgresql.org; Fri, 22 Nov 2024 09:10:36 +0000 Received: from ms-10.1blu.de ([178.254.4.101]) by makus.postgresql.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1tEPgP-003Bz8-5P for pgsql-general@lists.postgresql.org; Fri, 22 Nov 2024 09:10:35 +0000 Received: from [212.222.85.114] (helo=pureos) by ms-10.1blu.de with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.95) (envelope-from ) id 1tEPgM-00G3rl-TW; Fri, 22 Nov 2024 10:10:30 +0100 Date: Fri, 22 Nov 2024 10:10:29 +0100 From: Matthias Apitz To: pgsql-general@lists.postgresql.org Subject: Re: CVE-2024-10979 Vulnerability Impact on PostgreSQL 11.10 Message-ID: Reply-To: Matthias Apitz References: <7b5846ac-c16e-48d3-b548-99a772a528c5@aklaver.com> <6c898e6499036ce70ac113b52df5c3ff06286a6a.camel@cybertec.at> <6bcf33ea-f856-41d0-912e-9468dbf3af13@cloud.gatewaynet.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <6bcf33ea-f856-41d0-912e-9468dbf3af13@cloud.gatewaynet.com> X-Operating-System: FreeBSD 14.0-CURRENT 1400094 (amd64) X-message-flag: Mails in HTML will not be read! Send only plain text. X-Con-Id: 51246 X-Con-U: 0-guru X-Originating-IP: 212.222.85.114 List-Id: List-Help: List-Subscribe: List-Post: List-Owner: List-Archive: Archived-At: Precedence: bulk El día viernes, noviembre 22, 2024 a las 11:01:29 +0200, Achilleas Mantzios - cloud escribió: > > under development: V7.3-SP1 (we will not support 15.9 as cluster in SP1) > > used ESQL/C 15.9 (i.e. PostgreSQL client side) > > migrate the used cluster/database 'from' --> 'to' > > 15.1 --> 16.5 > > 16.2 --> 16.5 > > > > released: V7.3 (we will not support 15.9 as cluster in V7.3) > > used ESQL/C 15.1 (i.e. PostgreSQL client side) > > migrate the used cluster/database 'from' --> 'to' > > 15.1 --> 16.5 > > 16.2 --> 16.5 > > > > released: V7.2 (we will not support 15.9 as cluster in V7.2) > > used ESQL/C 11.4 (i.e. PostgreSQL client side) > > migrate the used cluster/database 'from' --> 'to' > > 13.1 --> 16.5 > > 16.2 --> 16.5 > > Why not decouple client libs from the server ? i.e. psql works great with > many versions greater than its own. And certainly with same major versions. > You could retain the same client libs and just upgrade the PgSQL server to > the highest minor version of the major version that you support. > ... This is exactly the plan. For all the three versions the cluster will be migrated to 16.5 and the client side will stay for the released version with what they currently use (11.4 or 15.1). And for the version under development 15.9 matthias -- Matthias Apitz, ✉ guru@unixarea.de, http://www.unixarea.de/ +49-176-38902045 Public GnuPG key: http://www.unixarea.de/key.pub Annalena Baerbock: "We are fighting a war against Russia ..." (25.1.2023) I, Matthias, I am not at war with Russia. Я не воюю с Россией. Ich bin nicht im Krieg mit Russland.