The release notes for the new version reference some CVEs that have not been publically released yet. Are they slow, or is this something that needs to be added to the release process checklist?
For example, see the CVE hyperlink for json parsing at: https://bucardo.org/postgres_all_versions.html#version_9.4.5 which leads to: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5289 It's also possible the wrong CVE was entered, but I don't see one that seems to pertain to the issue described (and CVE-2015-5288, -3166, -3167, -0243, -0244 are in the same boat). -- Greg Sabino Mullane g...@endpoint.com End Point Corporation PGP Key: 0x14964AC8
signature.asc
Description: Digital signature
