Debian DLA-709-1 : postgresql-9.1 update

high Nessus Plugin ID 94917

Synopsis

The remote Debian host is missing a security update.

Description

Several bugs were discovered in PostgreSQL, a relational database server system. This update corrects various stability issues.

9.1.24 marks the end of life of the PostgreSQL 9.1 branch.
No further releases will be made by the PostgreSQL Global Development Group.

Users of PostgreSQL 9.1 should look into upgrading to a newer PostgreSQL release. Options are :

- Upgrading to Debian 8 (Jessie), providing postgresql-9.4.

- The use of the apt.postgresql.org repository, providing packages for all active PostgreSQL branches (9.2 up to 9.6 at the time of writing).

See https://wiki.postgresql.org/wiki/Apt for more information about the repository.

A helper script to activate the repository is provided in /usr/share/doc/postgresql-9.1/examples/apt.postgresql.or g.sh.gz.

- In Debian, an LTS version of 9.1 is in planning that will cover the lifetime of wheezy-lts. Updates will made on a best-effort basis. Users can take advantage of this, but should still consider upgrading to newer PostgreSQL versions over the next months.

See https://wiki.debian.org/LTS for more information about Debian LTS.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Upgrade the affected packages.

See Also

https://lists.debian.org/debian-lts-announce/2016/11/msg00016.html

https://packages.debian.org/source/wheezy/postgresql-9.1

https://wiki.debian.org/LTS

https://wiki.postgresql.org/wiki/Apt

Plugin Details

Severity: High

ID: 94917

File Name: debian_DLA-709.nasl

Version: 2.3

Type: local

Agent: unix

Published: 11/16/2016

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:libecpg-compat3, p-cpe:/a:debian:debian_linux:libecpg-dev, p-cpe:/a:debian:debian_linux:libecpg6, p-cpe:/a:debian:debian_linux:libpgtypes3, p-cpe:/a:debian:debian_linux:libpq-dev, p-cpe:/a:debian:debian_linux:libpq5, p-cpe:/a:debian:debian_linux:postgresql-9.1, p-cpe:/a:debian:debian_linux:postgresql-9.1-dbg, p-cpe:/a:debian:debian_linux:postgresql-client-9.1, p-cpe:/a:debian:debian_linux:postgresql-contrib-9.1, p-cpe:/a:debian:debian_linux:postgresql-doc-9.1, p-cpe:/a:debian:debian_linux:postgresql-plperl-9.1, p-cpe:/a:debian:debian_linux:postgresql-plpython-9.1, p-cpe:/a:debian:debian_linux:postgresql-plpython3-9.1, p-cpe:/a:debian:debian_linux:postgresql-pltcl-9.1, p-cpe:/a:debian:debian_linux:postgresql-server-dev-9.1, cpe:/o:debian:debian_linux:7.0

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 11/16/2016