PostgreSQL vulnerabilities

2017-08-10T00:00:00
ID 982872F1-7DD3-11E7-9736-6CC21735F730
Type freebsd
Reporter FreeBSD
Modified 2017-08-10T00:00:00

Description

The PostgreSQL project reports:

CVE-2017-7546: Empty password accepted in some authentication methods CVE-2017-7547: The "pg_user_mappings" catalog view discloses passwords to users lacking server privileges CVE-2017-7548: lo_put() function ignores ACLs