diff options
| -rw-r--r-- | NEWS | 13 | ||||
| -rw-r--r-- | version.php | 2 |
2 files changed, 14 insertions, 1 deletions
@@ -2,6 +2,19 @@ pgpoolAdmin 4.0 =============================================================================== +* Version 4.0.1 2018/12/20 + + ** Bug fixes + + - PgpoolAdmin has a vulnerability to allow an attacker to + login without properly checking the authorization. + Once getting into PgpoolAdmin, the attacker can control + Pgpool-II. Also it may be possible to obtain the superuser + role of a PostgreSQL database. + PgPool Global Development Group would like to thank Fotios Rogkotis + of DarkMatter for finding the security issue and giving us the + detailed studies on it. (CVE-2018-16203) + * Version 4.0.0 2018/10/19 ** New features diff --git a/version.php b/version.php index 43541a6..f65a253 100644 --- a/version.php +++ b/version.php @@ -23,6 +23,6 @@ * @version SVN: $Id$
*/
-$version = '4.0.0';
+$version = '4.0.1';
?>
|