Technical Alert for Postgres Plus Advanced Server (Database Server 9.5.12.18-2)

Customer Portal
Customer Portal

This article was originally published on April 19, 2018

TECHNICAL ALERT STATUS

========================

Status: Recommended

This is a software update for the Database Server module shipped with the GA version of Postgres Plus Advanced Server 9.5. The update contains important fixes from the PostgreSQL community that could relate to possible data corruption and security. EDB urges users to apply this update at the next possible downtime.

 

WHAT IS IN THIS ALERT

=====================

 

This software update contains the following fixes:

OpenSSL 1.0.2o

------------------------

 

Merge OpenSSL 1.0.2o library to address items identified in Security Advisory 27-Mar-2018  - https://www.openssl.org/news/cl102.txt

 

IS THIS ALERT FOR ME?

====================

This alert is for customers using:

- Postgres Plus Advanced Server version: 9.5.x (Win64 & Linux64 only)

- Database Server

 

HOW TO GET THE UPDATE AND APPLY IT

==================================

 

This update is available through the Postgres Plus Advanced Server -  StackBuilder Plus Module.

Please perform the following steps in order to update your Database Server for Postgres Plus Advanced Server. It is recommended that you backup your files before performing the upgrade.

 

1. Right-Click on the System tray icon (PostgreSQL Elephant) and select 'Install Components'.  StackBuilder Plus will start and the available updates will be displayed in bold type in the component selection screen.

OR

Run StackBuilder Plus directly from the Application Menu. The update will automatically be selected and displayed in bold type.

2. Click Next and you will be asked to authenticate with EnterpriseDB.

3. Click Next and choose the download directory (where the update will be downloaded).

4. The installation program will start once the download is complete.

 

Notes:

a. The database server will be restarted as part of the upgrade process.

b. The data directory will not be affected by this upgrade.

 

ADDITIONAL REQUIRED STEPS

==========================

 

The PostgreSQL release notes provide steps necessary to correct the information_schema tables, but the steps described must be different for EDB Advanced Server.   This is because information_schema cannot be dropped due to required dependencies.

 

Instead, run the following script using edb-psql against each database:

 

SET search_path TO information_schema;                                     

CREATE OR REPLACE VIEW table_privileges AS                                 

SELECT CAST(u_grantor.rolname AS sql_identifier) AS grantor,           

       CAST(grantee.rolname AS sql_identifier) AS grantee,             

       CAST(current_database() AS sql_identifier) AS table_catalog,    

       CAST(nc.nspname AS sql_identifier) AS table_schema,             

       CAST(c.relname AS sql_identifier) AS table_name,                

       CAST(c.prtype AS character_data) AS privilege_type,             

       CAST(                                                           

         CASE WHEN                                                     

              -- object owner always has grant options                 

              pg_has_role(grantee.oid, c.relowner, 'USAGE')            

              OR c.grantable                                           

              THEN 'YES' ELSE 'NO' END AS yes_or_no) AS is_grantable,  

       CAST(CASE WHEN c.prtype = 'SELECT' THEN 'YES' ELSE 'NO' END AS yes_or_no) AS with_hierarchy

FROM (                                                                 

        SELECT oid, relname, relnamespace, relkind, relowner, (aclexplode(coalesce(relacl, acldefault('r', relowner)))).* FROM pg_class

     ) AS c (oid, relname, relnamespace, relkind, relowner, grantor, grantee, prtype, grantable),

     pg_namespace nc,                                                  

     pg_authid u_grantor,                                              

     (                                                                 

       SELECT oid, rolname FROM pg_authid                              

       UNION ALL                                                       

       SELECT 0::oid, 'PUBLIC'                                         

     ) AS grantee (oid, rolname)                                       

WHERE c.relnamespace = nc.oid                                          

      AND c.relkind IN ('r', 'v', 'f')                                 

      AND c.grantee = grantee.oid                                      

      AND c.grantor = u_grantor.oid                                    

      AND c.prtype IN ('INSERT', 'SELECT', 'UPDATE', 'DELETE', 'TRUNCATE', 'REFERENCES', 'TRIGGER')

      AND (pg_has_role(u_grantor.oid, 'USAGE')                         

           OR pg_has_role(grantee.oid, 'USAGE')

           OR grantee.rolname = 'PUBLIC');

 

HOW TO RESTORE TO ORIGINAL VERSION

===================================

 

In order to restore to the previous version, run the previous version installer. This will restore the database server to the previous installed version.

 

TROUBLESHOOTING

=================

If you experience any problems applying the upgrade or restoring the old version after applying the upgrade, please contact Technical Support at:

 

Email:  support@enterprisedb.com

 

Phone:

 

US: +1-732-331-1320 or 1-800-235-5891

UK: +44-2033719820

Brazil: +55-2139581371

India: +91-20-66449612

Was this article helpful?

0 out of 0 found this helpful