Update postgresql to 9.6.8
Update postgresql from 9.6.5 to 9.6.8 (Release Date: 2018-03-01) to address CVE-2018-1052, CVE-2018-1053, CVE-2017-12172, CVE-2017-15098, CVE-2017-15099, and CVE-2018-1058.
https://www.postgresql.org/docs/9.6/static/release-9-6-8.html
https://www.postgresql.org/about/news/1834/
PostgreSQL 10.3, 9.6.8, 9.5.12, 9.4.17, and 9.3.22 released!
Posted on 2018-03-01
We strongly encourage all of our users to please visit A Guide to CVE-2018-1058: Protect Your Search Path for a detailed explanation of CVE-2018-1058 and how to protect your PostgreSQL installations.
-
source: https://ftp.postgresql.org/pub/source/v9.6.8/postgresql-9.6.8.tar.bz2
-
checksum: https://ftp.postgresql.org/pub/source/v9.6.8/postgresql-9.6.8.tar.bz2.sha256
References
- #3182 (closed) (9.6.7) (proposed but not updated in practice)
- !1923 (merged) (9.6.5)
- !1605 (merged) #2342 (closed) (9.6.3)
-
Check migration guide
A dump/restore is not required for those running 9.6.X.
However, if you run an installation in which not all users are mutually trusting, or if you maintain an application or extension that is intended for use in arbitrary situations, it is strongly recommended that you read the documentation changes described in the first changelog entry below, and take suitable steps to ensure that your installation or code is secure.
Also, the changes described in the second changelog entry below may cause functions used in index expressions or materialized views to fail during auto-analyze, or when reloading from a dump. After upgrading, monitor the server logs for such problems, and fix affected functions.
Also, if you are upgrading from a version earlier than 9.6.7, see Section E.2.
E.2.1. Migration to Version 9.6.7
A dump/restore is not required for those running 9.6.X.
However, if you use contrib/cube's ~> operator, see the entry below about that.
Also, if you are upgrading from a version earlier than 9.6.6, see Section E.3.
E.3.1. Migration to Version 9.6.6
A dump/restore is not required for those running 9.6.X.
However, if you use BRIN indexes, see the fourth changelog entry below.
Also, if you are upgrading from a version earlier than 9.6.4, see Section E.5.
E.1.1. Migration to Version 9.6.5
A dump/restore is not required for those running 9.6.X.
However, if you are upgrading from a version earlier than 9.6.4, see Section E.2.