CVE-2020-25695

🗓️ 16 Nov 2020 00:40:36Reported by redhatType

Flaw in PostgreSQL versions allows arbitrary SQL function executio

Reporter	Title	Published	Views	Family All 259
ALT Linux	Security fix for the ALT Linux 10 package postgresql15-1C version 12.5-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql12 version 12.5-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql9.6 version 9.6.20-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package postgresql11-1C version 11.10-alt0.M80P.1	17 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package postgresql11 version 11.10-alt0.M80P.1	17 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package postgresql12-1C version 12.5-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 8 package postgresql10 version 10.15-alt0.M80P.1	17 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql13 version 13.1-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql12 version 12.5-alt1	16 Nov 202000:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package postgresql15 version 13.1-alt1	16 Nov 202000:00	–	altlinux

[
  {
    "product": "postgresql",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24"
      }
    ]
  }
]

Source	Link
lists	www.lists.debian.org/debian-lts-announce/2020/12/msg00005.html
security	www.security.netapp.com/advisory/ntap-20201202-0003/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
security	www.security.gentoo.org/glsa/202012-07
postgresql	www.postgresql.org/support/security/

07 Dec 2020 01:06Current

9.1High risk

Vulners AI Score9.1

EPSS0.4644

CWE-89