Back to bug 2153399
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Vipul Nair | 2022-12-14 14:20:43 UTC | CC | aboyko, aileenc, alazarot, anstephe, asoldano, avibelli, balejosg, bbaranow, bbuckingham, bcourt, bgeorges, bmaxwell, boliveir, brian.stansberry, btotty, cdewolf, clement.escoffier, dandread, darran.lofthouse, databases-maint, dciabrin, dkreling, dosoudil, eglynn, ehelms, emingora, eric.wittmann, fjuma, fmongiar, gjospin, gmalinko, gsmet, hamadhan, hhorak, ibek, ivassile, iweiss, janstey, jjoyce, jnethert, jorton, jpavlik, jpechane, jpoth, jrokos, jsherril, jstastny, kverlaen, lgao, lhh, ljavorsk, lpeer, lthon, lzap, max.andersen, mbayer, mburns, mgarciac, mhulan, mkolesni, mnovotny, mosmerov, mschorm, msochure, msvehla, myarboro, nmoumoul, nwallace, orabin, pantinor, pcreech, pdelbell, pdrozd, peholase, pgallagh, pjindal, pmackay, probinso, pskopek, rchan, rguimara, rrajasek, rruss, rstancel, rsvoboda, sbiarozk, scohen, sdouglas, smaestri, spower, sthorger, stuart, tcunning, tom.jenkinson, yfang | |
| Vipul Nair | 2022-12-14 14:22:36 UTC | Depends On | 2153420 | |
| Vipul Nair | 2022-12-14 14:23:03 UTC | Blocks | 2153385 | |
| Sandipan Roy | 2022-12-14 14:44:47 UTC | CC | aboyko, aileenc, alazarot, anstephe, asoldano, ataylor, avibelli, balejosg, bbaranow, bbuckingham, bcourt, bgeorges, bmaxwell, boliveir, brian.stansberry, btotty, cdewolf, chazlett, clement.escoffier, dandread, darran.lofthouse, databases-maint, dciabrin, dkreling, dosoudil, eglynn, ehelms, emingora, eric.wittmann, fjuma, fmongiar, gjospin, gmalinko, gsmet, hamadhan, hhorak, ibek, ivassile, iweiss, janstey, jjoyce, jnethert, jorton, jpavlik, jpechane, jpoth, jrokos, jross, jsherril, jstastny, jwon, kverlaen, lgao, lhh, ljavorsk, lpeer, lthon, lzap, max.andersen, mbayer, mburns, mgarciac, mhulan, mkolesni, mnovotny, mokumar, mosmerov, mschorm, msochure, msvehla, myarboro, nmoumoul, nwallace, orabin, pantinor, pcreech, pdelbell, pdrozd, peholase, pgallagh, pjindal, pmackay, probinso, pskopek, rchan, rguimara, rkieley, rrajasek, rruss, rstancel, rsvoboda, sbiarozk, scohen, sdouglas, smaestri, spower, sthorger, tcunning, tom.jenkinson, yfang | |
| Sandipan Roy | 2022-12-14 14:45:05 UTC | CC | databases-maint, fjanus, hhorak, jorton, pkubat, praiskup | |
| Sandipan Roy | 2022-12-14 14:47:22 UTC | Summary | CVE-2022-41946 org.postgresql: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k | CVE-2022-41946 postgresql: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k |
| Sandipan Roy | 2022-12-14 14:54:13 UTC | CC | databases-maint, fjanus, hhorak, jorton, pkubat, praiskup | |
| Sandipan Roy | 2022-12-14 14:58:04 UTC | CC | aileenc, alazarot, anstephe, avibelli, balejosg, bgeorges, chazlett, clement.escoffier, dandread, dkreling, emingora, eric.wittmann, fmongiar, gjospin, gmalinko, gsmet, hamadhan, ibek, janstey, jnethert, jpavlik, jpechane, jrokos, jstastny, jwon, kverlaen, lthon, max.andersen, mnovotny, pantinor, pdelbell, peholase, pgallagh, pjindal, probinso, rguimara, rrajasek, rruss, rsvoboda, sbiarozk, sdouglas | |
| Sandipan Roy | 2022-12-14 14:58:29 UTC | CC | aileenc, alazarot, anstephe, avibelli, balejosg, bgeorges, chazlett, clement.escoffier, dandread, dkreling, emingora, eric.wittmann, fmongiar, gjospin, gmalinko, gsmet, hamadhan, ibek, janstey, jnethert, jpavlik, jpechane, jrokos, jstastny, jwon, kverlaen, lthon, max.andersen, mnovotny, pantinor, pdelbell, peholase, pgallagh, pjindal, probinso, rguimara, rrajasek, rruss, rsvoboda, sbiarozk, sdouglas | |
| Sandipan Roy | 2022-12-14 15:01:09 UTC | CC | aileenc, alazarot, anstephe, avibelli, balejosg, bgeorges, chazlett, clement.escoffier, dandread, dkreling, emingora, eric.wittmann, fmongiar, gjospin, gmalinko, gsmet, hamadhan, ibek, janstey, jnethert, jpavlik, jpechane, jrokos, jstastny, jwon, kverlaen, lthon, max.andersen, mnovotny, pantinor, pdelbell, peholase, pgallagh, pjindal, probinso, rguimara, rrajasek, rruss, rsvoboda, sbiarozk, sdouglas | |
| Sandipan Roy | 2022-12-14 15:01:57 UTC | CC | databases-maint, fjanus, hhorak, michal.skrivanek, mperina, pkubat, praiskup, sbonazzo, zmiklank | |
| Sandipan Roy | 2022-12-14 15:02:22 UTC | Summary | CVE-2022-41946 postgresql: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k | CVE-2022-41946 postgresql-jdbc: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k |
| Sandipan Roy | 2022-12-14 15:04:18 UTC | Summary | CVE-2022-41946 postgresql-jdbc: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k | CVE-2022-41946 postgresql-jdbc: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k |
| Sandipan Roy | 2022-12-14 15:04:51 UTC | Depends On | 2153433 | |
| Sandipan Roy | 2022-12-14 15:16:14 UTC | Depends On | 2153444, 2153442, 2153445, 2153443 | |
| Avinash Hanwate | 2022-12-16 10:20:45 UTC | Depends On | 2154232 | |
| Avinash Hanwate | 2022-12-16 10:21:27 UTC | Depends On | 2153420 | |
| Kazu Yoshida | 2022-12-20 04:21:42 UTC | CC | kyoshida | |
| Chess Hazlett | 2023-01-03 20:19:18 UTC | Fixed In Version | postgres 42.2.27, postgres 42.3.8, postgres 42.4.3 | |
| Chess Hazlett | 2023-01-03 20:32:37 UTC | Fixed In Version | postgres 42.2.27, postgres 42.3.8, postgres 42.4.3 | postgres 42.2.27, postgres 42.3.8, postgres 42.4.3, postgres 42.5.1 |
| Chess Hazlett | 2023-01-03 20:33:31 UTC | Fixed In Version | postgres 42.2.27, postgres 42.3.8, postgres 42.4.3, postgres 42.5.1 | postgres 42.2.27.jre7, postgres 42.2.27, postgres 42.3.8, postgres 42.4.3, postgres 42.5.1 |
| Chess Hazlett | 2023-01-03 20:35:56 UTC | CC | bbuckingham, bcourt, btotty, ehelms, jsherril, lzap, mhulan, myarboro, nmoumoul, orabin, pcreech, rchan | |
| Chess Hazlett | 2023-01-03 20:36:33 UTC | Depends On | 2157986 | |
| Satyajit Das | 2023-01-09 13:37:07 UTC | CC | sadas | |
| Yadnyawalk Tale | 2023-01-13 11:38:54 UTC | CC | ytale | |
| Bharati Kailas Shahu | 2023-01-20 05:43:28 UTC | CC | bshahu | |
| Patrick Del Bello | 2023-01-31 13:47:11 UTC | Doc Text | A flaw was found in org.postgresql. This flaw allows a creation of a temporary file when using PreparedStatement.setText(int, InputStream) and PreparedStatemet.setBytea(int, InputStream). A malicious user could benefit from creating an unexpected file available for all users and therefore end in unexpected behavior. | |
| Paige Jung | 2023-01-31 19:01:29 UTC | Doc Text | A flaw was found in org.postgresql. This flaw allows a creation of a temporary file when using PreparedStatement.setText(int, InputStream) and PreparedStatemet.setBytea(int, InputStream). A malicious user could benefit from creating an unexpected file available for all users and therefore end in unexpected behavior. | A flaw was found in org.postgresql. This issue allows the creation of a temporary file when using PreparedStatement.setText(int, InputStream) and PreparedStatemet.setBytea(int, InputStream). This could allow a user to create an unexpected file available to all users, which could end in unexpected behavior. |
| errata-xmlrpc | 2023-02-14 12:12:13 UTC | Link ID | Red Hat Product Errata RHSA-2023:0758 | |
| errata-xmlrpc | 2023-02-14 13:09:17 UTC | Link ID | Red Hat Product Errata RHSA-2023:0759 | |
| Karnvir Singh | 2023-02-20 21:41:35 UTC | CC | karnsing | |
| errata-xmlrpc | 2023-02-21 15:42:03 UTC | Link ID | Red Hat Product Errata RHSA-2023:0888 | |
| Tomas Hoger | 2023-02-27 08:09:16 UTC | Summary | CVE-2022-41946 postgresql-jdbc: PreparedStatement.setText(int, InputStream) will create a temporary file if the InputStream is larger than 2k | CVE-2022-41946 postgresql-jdbc: Information leak of prepared statement data due to insecure temporary file permissions |
| Red Hat Bugzilla | 2023-03-02 08:27:58 UTC | CC | myarboro | |
| errata-xmlrpc | 2023-03-08 14:55:20 UTC | Link ID | Red Hat Product Errata RHSA-2023:1006 | |
| errata-xmlrpc | 2023-03-09 10:47:10 UTC | Link ID | Red Hat Product Errata RHSA-2023:1177 | |
| errata-xmlrpc | 2023-04-04 15:20:06 UTC | Link ID | Red Hat Product Errata RHSA-2023:1630 | |
| errata-xmlrpc | 2023-04-17 15:24:37 UTC | Link ID | Red Hat Product Errata RHSA-2023:1815 | |
| Kazu Yoshida | 2023-04-28 05:25:28 UTC | CC | security-response-team | |
| Flags | needinfo?(security-response-team) | |||
| Product Security DevOps Team | 2023-04-28 10:09:04 UTC | Flags | needinfo?(security-response-team) | needinfo?(pdelbell) |
| Patrick Del Bello | 2023-04-30 14:20:02 UTC | Flags | needinfo?(pdelbell) | |
| errata-xmlrpc | 2023-05-03 13:20:19 UTC | Link ID | Red Hat Product Errata RHSA-2023:2097 | |
| errata-xmlrpc | 2023-05-09 07:38:16 UTC | Link ID | Red Hat Product Errata RHSA-2023:2378 | |
| Red Hat Bugzilla | 2023-05-15 18:03:51 UTC | CC | rrajasek | |
| Red Hat Bugzilla | 2023-05-15 20:19:07 UTC | CC | btotty | |
| errata-xmlrpc | 2023-05-16 08:22:19 UTC | Link ID | Red Hat Product Errata RHSA-2023:2867 | |
| Product Security DevOps Team | 2023-05-16 15:47:22 UTC | Resolution | --- | ERRATA |
| Status | NEW | CLOSED | ||
| Last Closed | 2023-05-16 15:47:22 UTC | |||
| errata-xmlrpc | 2023-06-28 15:59:21 UTC | CC | cwarfiel | |
| CC | ybuenos | |||
| Flags | needinfo?(ehelms) | |||
| Link ID | Red Hat Product Errata RHSA-2023:3906 | |||
| errata-xmlrpc | 2023-06-29 20:07:59 UTC | Link ID | Red Hat Product Errata RHSA-2023:3954 |
Back to bug 2153399