PostgreSQL release

French version below

We have updated PostgrSQL following the security flaw detected in versions 9 and 8. To be more exact, there were 3 flaws, with one more important: CVE-2013-1899. This one could lead to corrupt postgres datas. Two smaller ones came after it: CVE-2013-1900 and CVE-2013-1901.

These flaws affected the 4 last versions: 9.2, 9.1, 9.0 and 8.4 (8.3 is no longer supported by Clever Cloud).

Owing the critical nature of the issue, an announce was done last week indicating that public repositories will be closed until the relase of april, 4th.

All our clusters has been updated since, leading to a shut down of a few seconds.

Moreover, we also took advantages of this opportunity to manage the distribution of 3 of 4 new versions of Exherbo.

The Clever Cloud's support remains at your disposal for any questions:

Version française

Nous avons effectué la mise à jour de PostgreSQL suite à la faille de sécurité détectée dans les versions 9 et 8.

Plus exactement, il y a eu 3 failles dont une très importante : la CVE-2013-1899. Celle-ci pouvait amener à la corruption des données postgres. Deux autres plus petites lui ont succédé: CVE-2013-1900 et CVE-2013-1901

Ces failles touchaient les 4 dernières branches: 9.2, 9.1, 9.0 et 8.4 (8.3 n'étant pas supportée par Clever Cloud).

Compte tenu de la nature critique de l'incident, une annonce a été faite la semaine dernière indiquant que les dépôts publics seraient fermés en attendant la release du 4 avril.

Tous nos clusters ont depuis été mis à jour, entrainant une coupure de quelques secondes.

De plus, nous en avons profité pour gérer la distribution de 3 des 4 nouvelles versions Exherbo.

Le support Clever Cloud reste à votre disposition si vous avez des questions :


À lire également

Deploy llama, mistral, openchat or your own model on Clever Cloud

If AI has been in the news recently, it's mainly through large language models (LLMs), which require substantial computing power for training or inference. Thus, it's common to see developers using them via turnkey APIs, as we did in a previous article. But this is changing thanks to more open and efficient models and tools, which you can easily deploy on Clever Cloud.

Our consortium, InfrateX, wins Simpl

The InfrateX Consortium, led by Sopra Steria with NTT Data and including Clever Cloud as a member, has won the significant contract Simpl.
Company Press

Our end-of-year events

The end of the year is already shaping up to be full of events, trade…