This bug was fixed in the package postgresql-14 - 14.5-0ubuntu0.22.04.1
--------------- postgresql-14 (14.5-0ubuntu0.22.04.1) jammy-security; urgency=medium
* New upstream version (LP: #1984012).
+ A dump/restore is not required for those running 14.X.
+ Also, if you are upgrading from a version earlier than 14.4, see those release notes as well please.
+ Do not let extension scripts replace objects not already belonging to the extension (Tom Lane). (CVE-2022-2625)
+ Do not let extension scripts replace objects not already belonging to the extension (Tom Lane).
+ Fix permissions checks in CREATE INDEX (Nathan Bossart, Noah Misch).
+ Details about these and many further changes can be found at: https://www.postgresql.org/docs/14/release-14-5.html
-- Sergio Durigan Junior <email address hidden> Mon, 08 Aug 2022 18:15:57 -0400
This bug was fixed in the package postgresql-14 - 14.5-0ubuntu0. 22.04.1
--------------- 22.04.1) jammy-security; urgency=medium
postgresql-14 (14.5-0ubuntu0.
* New upstream version (LP: #1984012).
+ A dump/restore is not required for those running 14.X.
+ Also, if you are upgrading from a version earlier than 14.4, see
those release notes as well please.
+ Do not let extension scripts replace objects not already belonging CVE-2022- 2625)
to the extension (Tom Lane).
(
+ Do not let extension scripts replace objects not already belonging
to the extension (Tom Lane).
+ Fix permissions checks in CREATE INDEX (Nathan Bossart,
Noah Misch).
+ Details about these and many further changes can be found at: /www.postgresql .org/docs/ 14/release- 14-5.html
https:/
-- Sergio Durigan Junior <email address hidden> Mon, 08 Aug 2022 18:15:57 -0400