Scientific Linux Security Update : postgresql on SL4 i386,x86_64, SL5 i386
Medium Nessus Plugin ID 60176
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionUpdated postgresql packages that fix several security issues are now available.
A flaw was found in the way PostgreSQL allows authenticated users to execute security-definer functions. It was possible for an unprivileged user to execute arbitrary code with the privileges of the security-definer function. (CVE-2007-2138)
SolutionUpdate the affected packages.