KLA11196Multiple vulnerabilities in PostgreSQL

2018-02-08T00:00:00
ID KLA11196
Type kaspersky
Reporter Kaspersky Lab
Modified 2019-03-07T00:00:00

Description

Detect date:

02/08/2018

Severity:

High

Description:

Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions and obtain sensitive information.

Affected products:

PostgreSQL 9.3 earlier than 9.3.21
PostgreSQL 9.4 earlier than 9.4.16
PostgreSQL 9.5 earlier than 9.5.11
PostgreSQL 9.6 earlier than 9.6.7
PostgreSQL 10 earlier than 10.2

Solution:

Update to the latest version
Download PostgreSQL

Original advisories:

Security Information

Impacts:

OSI

Related products:

PostgreSQL

CVE-IDS:

CVE-2018-10533.3High
CVE-2018-10524.0High