update postgres version from 10 to 10.9 due to a critical security bug #141

rdhariwal · 2019-07-09T21:56:25Z

A critical security vulnerability was found in postgres 10, 11 and 12. The community is recommending upgrading postgres 10 to 10.9. For more information please see this link to postgresql.org

…lnerability. More details here: https://www.postgresql.org/about/news/1949/

ImreSamu · 2019-07-10T16:51:21Z

imho:

in you fix - the 2 input docker image ( FROM postgres:10˙ --> FROM postgres:10.9 ) has a same hash . sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
so you will receive the same result.

$ docker pull postgres:10.9
10.9: Pulling from library/postgres
Digest: sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
Status: Image is up to date for postgres:10.9
docker.io/library/postgres:10.9

$ docker pull postgres:10
10: Pulling from library/postgres
Digest: sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
Status: Image is up to date for postgres:10
docker.io/library/postgres:10

see https://hub.docker.com/_/postgres?tab=tags

rdhariwal · 2019-07-10T17:08:26Z

imho:

in you fix - the 2 input docker image ( FROM postgres:10˙ --> FROM postgres:10.9 ) has a same hash . sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
so you will receive the same result.
$ docker pull postgres:10.9
10.9: Pulling from library/postgres
Digest: sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
Status: Image is up to date for postgres:10.9
docker.io/library/postgres:10.9

$ docker pull postgres:10
10: Pulling from library/postgres
Digest: sha256:28190f73fba07ccee28c70e8aa66bae05072e7485c3f6fc59ab984dcfd8babe9
Status: Image is up to date for postgres:10
docker.io/library/postgres:10
see https://hub.docker.com/_/postgres?tab=tags

Ahh looks like postgres:10 has been upgraded to run postgres engine 10.9 as of 4 hours ago. So I will close this PR, thanks for looking at it @ImreSamu

rdhariwal added 2 commits July 9, 2019 17:52

update postgres version from 10 to 10.9 due to a critical security vu…

f1e2311

…lnerability. More details here: https://www.postgresql.org/about/news/1949/

upgrade alpine version to use 10.9 postgres engine

0c6b915

rdhariwal closed this Jul 10, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

update postgres version from 10 to 10.9 due to a critical security bug #141

update postgres version from 10 to 10.9 due to a critical security bug #141

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

update postgres version from 10 to 10.9 due to a critical security bug #141

update postgres version from 10 to 10.9 due to a critical security bug #141

Uh oh!

Conversation

Uh oh!

Uh oh!

Uh oh!

Uh oh!