[postgis-users] Errors with upgrading due to CVE CVE-2022-2625

Regina Obe lr at pcorp.us
Thu Aug 11 09:26:07 PDT 2022

> From: postgis-users [mailto:postgis-users-bounces at lists.osgeo.org] On
> Of Daniel Gustafsson
> Sent: Thursday, August 11, 2022 12:11 PM
> To: postgis-users at lists.osgeo.org
> Subject: [postgis-users] Errors with upgrading due to CVE CVE-2022-2625
> When building packages today for the new postgres releases I ran into the
> below error for the PostGIS package when running tests:
>   ERROR:  function layertrigger() is not a member of extension
> "postgis_topology"
>   DETAIL:  An extension is not allowed to replace an object that it does
> own.
> It seems that it's related to the CVE which was fixed in the new postgres
> releases today.  Am I doing something wrong, or are is this a legitimate
> with the postgis upgrade?
> --
> Daniel Gustafsson		https://vmware.com/
Looks like a legitimate issue.
I've ticketed.  https://trac.osgeo.org/postgis/ticket/5209

What version of postgis_topology are you running and which version are you
upgrading from?

More information about the postgis-users mailing list