Debian DSA-4027-1 : postgresql-9.4 - security update
Medium Nessus Plugin ID 104483
SynopsisThe remote Debian host is missing a security-related update.
DescriptionA vulnerabilitiy has been found in the PostgreSQL database system:
Denial of service and potential memory disclosure in the json_populate_recordset() and jsonb_populate_recordset() functions.
SolutionUpgrade the postgresql-9.4 packages.
For the oldstable distribution (jessie), this problem has been fixed in version 9.4.15-0+deb8u1.