Trustix Security Engineers identified insecure temporary file creation in a script included in the postgresql suite, an object-relational SQL database. This could lead an attacker to trick a user to overwrite arbitrary files he has write access to. For the stable distribution (woody) this problem has been fixed in version 7.2.1-2woody6. For the unstable distribution (sid) this problem has been fixed in version 7.4.6-1. We recommend that you upgrade your postgresql packages.
Trustix Security Engineers identified insecure temporary file creation in a script included in the postgresql suite, an object-relational SQL database. This could lead an attacker to trick a user to overwrite arbitrary files he has write access to.
For the stable distribution (woody) this problem has been fixed in version 7.2.1-2woody6.
For the unstable distribution (sid) this problem has been fixed in version 7.4.6-1.
We recommend that you upgrade your postgresql packages.
MD5 checksums of the listed files are available in the original advisory.