PostgreSQL 累计漏洞修正版（2011年9月26日）

PostgreSQL 开发团队今天发布了所有版本分支的小更新版本，分别是：9.1.1, 9.0.5, 8.4.9, 8.3.16 and 8.2.22.

强烈建议所有 PostgreSQL 立即升级！

从今年开始 PostgreSQL 社区将停止发布 8.2 版本的更新，建议使用 8.2 版本的用户升级到更新的版本。

这次发布的更新版本主要修复了很多的bug以及一些潜在的导致程序崩溃和数据损坏的问题，包括：

Applied upstream fix in contrib/pg_crypto for blowfish signed-character bug (CVE-2011-2483), where encryption code could give wrong results on platforms where char is signed (which is most), leading to encrypted passwords being weaker than they should be; Work-around for gcc 4.6.0 bug that breaks WAL replay; Fixed memory leak at end of a GiST index scan; Improved handling of SSL errors; Fixed SSPI login when multiple roundtrips are required (typical error reported was "The function requested is not supported"); Fixed VACUUM so that it always updates pg_class.reltuples and pg_class.relpages; Allowed the planner to assume that empty parent tables really are empty; Disallowed SELECT FOR UPDATE/SHARE on sequences; Fixed failure when DROP OWNED BY attempts to remove default privileges on sequences.

该版本包含：11 patches to 9.1 , 147 patches to 9.0 , 96 patches to 8.4 , 73 patches to 8.3 and 52 patches to 8.2 .

下载地址： download page