What is the Postgres patch in APM10.7.0.90SP1.jar?

Document ID : KB000107946
Last Modified Date : 27/07/2018
Show Technical Document Details
Question:
What is included in the hotfix for APM 10.7 SP1 related to Postgres?
Answer:
The hotfix removes certain files/folders that were seen as vulnerabilities
  • pgAdmin 4 directory                                    [eg path :: /usr/pgsql-9.6/pgAdmin 4]
  • /include/libxslt/xsltutils.h                             [eg path :: /usr/pgsql-9.6/include/libxslt/xsltutils.h]
  • /include/libxml2/libxml/xmlunicode.h          [eg path :: /usr/pgsql-9.6/include/libxml2/libxml/xmlunicode.h]
 
If the above files are not present, there is no need to run the hotfix on Postgres
If above files are present then either:
  • the patch needs to be run on the Postgres machine, or
  • we can manually move those files to a backup folder to fix Postgres vulnerabilities.

It may be required to perform the operation manually for installations where the bundled Postgres is not used.
The patch checks for a 
postgres executable (postgres.exe for Windows) in <Postgres home directory>/bin/postgres folder [eg path:: usr/pgsql-9.6/bin/postgres
This check will generally only succeed for the Postgres that is bundled with the Enterprise Manager installer