- CVE-2017-14798, bsc#1062722: Fix LPE via postgres init script.

This only affected SysV-init based systems (i.e. SLE11). OBS-URL: https://build.opensuse.org/package/show/server:database:postgresql/postgresql?expand=0&rev=96
2017-11-22 13:04:57 +00:00 · 2017-11-22 13:04:57 +00:00 · 3eac0cf988
commit 3eac0cf988
parent 6631adb591
2 changed files with 6 additions and 1 deletions
--- a/1
+++ b/1
@ -98,7 +98,6 @@ case "$1" in
 	    INITDB=/usr/bin/initdb
            V=$(printf "%02d%02d" $(echo $VERSION|awk -F. '{print $1, $2}'))
            AUTH="ident"; test $V -lt 0804 && AUTH="ident sameuser"
-	    install -d -o postgres -g postgres -m 700 ${DATADIR} &&
            su - postgres -c \
                "$INITDB --locale=$LANG --auth=\"$AUTH\" $DATADIR &> initlog" ||
 	    rc_failed
--- a/postgresql.changes
+++ b/postgresql.changes
@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Wed Nov 22 13:03:42 UTC 2017 - max@suse.com
+
+- CVE-2017-14798, bsc#1062722: Fix LPE via postgres init script.
+  This only affected SysV-init based systems (i.e. SLE11).
+
 -------------------------------------------------------------------
 Tue Nov 14 08:52:46 UTC 2017 - max@suse.com