On Sat, Dec 14, 2024 at 09:50:23PM -0500, Roberto C. Sánchez wrote:
> Greetings pgsql devs,
>
> I would appreciate a review of my strategy for backporting the commits
> related to CVE-2024-10978. (I am working with versions 11, 9.6, and 9.4,
> for some older Debian releases.)
>
> My conclusion is that of the two commits associated with CVE-2024-10978,
> both are required in 11 and 9.6, but only one is required in 9.4.
>
I wonder if someone might be able to look at my original message and
help validate my analysis.
Regards,
-Roberto
--
Roberto C. Sánchez