Lucene search

K
mageiaGentoo FoundationMGASA-2022-0313
HistoryAug 29, 2022 - 8:07 a.m.

Updated postgresql packages fix security vulnerability

2022-08-2908:07:41
Gentoo Foundation
advisories.mageia.org
40

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

69.7%

Autovacuum, REINDEX, and others omit β€œsecurity restricted operation” sandbox (CVE-2022-1552) Extension scripts replace objects not belonging to the extension (CVE-2022-2625)

OSVersionArchitecturePackageVersionFilename
Mageia8noarchpostgresql11<Β 11.17-1postgresql11-11.17-1.mga8
Mageia8noarchpostgresql13<Β 13.8-1postgresql13-13.8-1.mga8

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

69.7%