UbuntuUpdates.org

Package "postgis"

Name: postgis

Description:

Geographic objects support for PostgreSQL
Latest version: 2.1.2+dfsg-2ubuntu0.2
Release: trusty (14.04)
Level: updates
Repository: universe
Homepage: http://postgis.refractions.net/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "postgis"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "postgis" in Trusty

Repository Area Version
base universe 2.1.2+dfsg-2
security universe 2.1.2+dfsg-2ubuntu0.2
PPA: Postgresql 2.3.2+dfsg-1~exp2.pgdg12.4+1
PPA: Postgresql 2.4.4+dfsg-4.pgdg14.04+1
PPA: Postgresql 3.1.1+dfsg-1.pgdg16.04+1
PPA: Postgresql 3.2.1+dfsg-1.pgdg18.04+1
PPA: Postgresql 3.4.2+dfsg-1.pgdg22.04+1
PPA: Postgresql 3.4.2+dfsg-1.pgdg20.04+1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 2.1.2+dfsg-2ubuntu0.2 2019-02-26 21:06:28 UTC

  postgis (2.1.2+dfsg-2ubuntu0.2) trusty-security; urgency=medium

  * SECURITY UPDATE: An empty argument in a postgis function can cause a DoS
    in PostgreSQL. This fix avoid it.
    - debian/patches/CVE-2017-18359.patch: ST_AsX3D handle empty geometries.
    - CVE-2017-18359

 -- Paulo Flabiano Smorigo <email address hidden> Thu, 14 Feb 2019 16:39:36 -0200
Source diff to previous version
CVE-2017-18359 PostGIS 2.x before 2.3.3, as used with PostgreSQL, allows remote attackers to cause a denial of service via crafted ST_AsX3D function input, as demon

Version: 2.1.2+dfsg-2ubuntu0.1 2015-04-02 22:06:47 UTC

  postgis (2.1.2+dfsg-2ubuntu0.1) trusty-security; urgency=high

  * SECURITY UPDATE: crash of the database backend process when given
    invalid GeoJSON data (LP: #1438875)
    - debian/patches/geojson-fix-3094.patch: back-ported from the 2.1.7
      release, taken from debian patch by Markus Wanner.
    - No CVE number
 -- Johan Van de Wauw <email address hidden> Wed, 01 Apr 2015 21:29:10 +0200
1438875 Database crash with invalid geoJSON input


About   -   Send Feedback to @ubuntu_updates