PostgreSQL project reports:
This update fixes three security vulnerabilities reported in PostgreSQL over the past few months. Nether of these issues is seen as particularly urgent. However, users should examine them in case their installations are vulnerable:.
CVE-2015-3165 Double "free" after authentication timeout. CVE-2015-3166 Unanticipated errors from the standard library. CVE-2015-3167 pgcrypto has multiple error messages for decryption with an incorrect key.