SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionPrivilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.( CVE-2017-12172)
Invalid json_populate_recordset or jsonb_populate_recordset function calls in PostgreSQL can crash the server or disclose a few bytes of server memory.(CVE-2017-15098)
SolutionRun 'yum update postgresql92' to update your system.
Run 'yum update postgresql93' to update your system.
Run 'yum update postgresql94' to update your system.