Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2015 Eero VolotinenOPENVAS:1361412562310121401
HistorySep 29, 2015 - 12:00 a.m.

Gentoo Security Advisory GLSA 201507-20

2015-09-2900:00:00
Copyright (C) 2015 Eero Volotinen
plugins.openvas.org
18

7.7 High

AI Score

Confidence

Low

0.085 Low

EPSS

Percentile

94.4%

JSON

Gentoo Linux Local Security Checks GLSA 201507-20

# SPDX-FileCopyrightText: 2015 Eero Volotinen
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.121401");
  script_version("2023-07-20T05:05:17+0000");
  script_tag(name:"creation_date", value:"2015-09-29 11:28:59 +0300 (Tue, 29 Sep 2015)");
  script_tag(name:"last_modification", value:"2023-07-20 05:05:17 +0000 (Thu, 20 Jul 2023)");
  script_name("Gentoo Security Advisory GLSA 201507-20");
  script_tag(name:"insight", value:"Multiple vulnerabilities have been discovered in PostgreSQL. Please review the CVE identifiers referenced below for details.");
  script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name:"URL", value:"https://security.gentoo.org/glsa/201507-20");
  script_cve_id("CVE-2014-8161", "CVE-2015-0241", "CVE-2015-0242", "CVE-2015-0243", "CVE-2015-0244", "CVE-2015-3165", "CVE-2015-3166", "CVE-2015-3167");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-01-31 20:18:00 +0000 (Fri, 31 Jan 2020)");
  script_tag(name:"qod_type", value:"package");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
  script_category(ACT_GATHER_INFO);
  script_tag(name:"summary", value:"Gentoo Linux Local Security Checks GLSA 201507-20");
  script_copyright("Copyright (C) 2015 Eero Volotinen");
  script_family("Gentoo Local Security Checks");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-gentoo.inc");

res = "";
report = "";

if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.0.21"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.1.17"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.2.12"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.3.8"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.4.3"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.0.22"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.0.23"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.0.24"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.1.18"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.1.19"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.1.20"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.2.13"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.2.14"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.2.15"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.3.9"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.3.10"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list("ge 9.3.11"), vulnerable: make_list() )) != NULL) {

  report += res;
}
if((res=ispkgvuln(pkg:"dev-db/postgresql", unaffected: make_list(), vulnerable: make_list("lt 9.4.3"))) != NULL) {
  report += res;
}

if(report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99);
}

Related

nessus 43
gentoo 1
freebsd 2
openvas 34
mageia 2
veracode 7
debian 9
ubuntu 2
ibm 1
oraclelinux 2
osv 6
amazon 6
securityvulns 6
redhat 6
archlinux 3
centos 2
fedora 2
huawei 2
postgresql 8
prion 8
cve 8
cvelist 8
ubuntucve 8
kaspersky 1
nessus
nessus
GLSA-201507-20 : PostgreSQL: Multiple vulnerabilities
2015-07-20 00:00:00
FreeBSD : PostgreSQL -- multiple buffer overflows and memory issues (3b40bf2c-ad83-11e4-a2b2-0026551a22dc)
2015-02-06 00:00:00
SuSE 11.3 Security Update : postgresql91 (SAT Patch Number 10389)
2015-03-31 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2015-07-18 00:00:00
freebsd
freebsd
PostgreSQL -- multiple buffer overflows and memory issues
2015-02-05 00:00:00
PostgreSQL -- minor security problems.
2015-04-10 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0639-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2015-0069)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-152)
2023-03-08 00:00:00
mageia
mageia
Updated postgresql packages fix security vulnerabilities
2015-02-17 21:38:13
Updated postgresql package fixes security vulnerability
2015-07-01 15:40:22
veracode
veracode
Buffer Overflow
2019-05-02 05:12:40
SQL Injection
2019-05-02 05:12:40
Information Disclosure
2019-01-15 09:05:07
debian
debian
[SECURITY] [DSA 3155-1] postgresql-9.1 security update
2015-02-06 13:31:06
[SECURITY] [DLA-152-1] postgresql-8.4 update
2015-02-12 11:10:48
[SECURITY] [DSA 3270-1] postgresql-9.4 security update
2015-05-22 15:36:10
ubuntu
ubuntu
PostgreSQL vulnerabilities
2015-02-11 00:00:00
PostgreSQL vulnerabilities
2015-05-25 00:00:00
ibm
ibm
Security Bulletin: PostgreSQL 9.2.8 as used in IBM QRadar SIEM 7.2.4 and IBM QRadar SIEM 7.1 MR2 is vulnerable to allow a remote authenticated attacker to obtain sensitive information. (CVE-2014-8161, CVE-2015-0241, CVE-2015-0243, CVE-2015-0244)
2018-06-16 21:25:51
oraclelinux
oraclelinux
postgresql security update
2015-03-30 00:00:00
postgresql security update
2015-06-29 00:00:00
osv
osv
postgresql-8.4 - new minor release
2015-02-12 00:00:00
postgresql-9.1 - security update
2015-02-06 00:00:00
postgresql-8.4 - security update
2015-05-29 00:00:00
amazon
amazon
Medium: postgresql8
2015-04-15 21:47:00
Medium: postgresql92
2015-03-13 02:37:00
Medium: postgresql8
2015-07-07 12:29:00
securityvulns
securityvulns
PostgreSQL multiple security vulnerabilities
2015-02-11 00:00:00
[SECURITY] [DSA 3155-1] postgresql-9.1 security update
2015-02-11 00:00:00
[SECURITY] [DSA 3270-1] postgresql-9.4 security update
2015-05-25 00:00:00
redhat
redhat
(RHSA-2015:0750) Moderate: postgresql security update
2015-03-30 00:00:00
(RHSA-2015:0856) Moderate: postgresql92-postgresql security update
2015-04-20 00:00:00
(RHSA-2015:0699) Moderate: postgresql92-postgresql security update
2015-03-18 00:00:00
archlinux
archlinux
postgresql: multiple issues
2015-02-06 00:00:00
postgresql: multiple issues
2015-05-26 00:00:00
[ASA-202102-31] postgresql: information disclosure
2021-02-20 00:00:00
centos
centos
postgresql security update
2015-03-30 13:25:17
postgresql security update
2015-06-29 16:03:44
fedora
fedora
[SECURITY] Fedora 20 Update: postgresql-9.3.6-1.fc20
2015-02-15 02:58:37
[SECURITY] Fedora 21 Update: postgresql-9.3.6-1.fc21
2015-02-08 08:58:19
huawei
huawei
Security Advisory - Two Buffer Overflow Vulnerabilities in the GaussDB
2017-06-07 00:00:00
Security Advisory - SQL Injection Vulnerability in the GaussDB
2017-06-07 00:00:00
postgresql
postgresql
Vulnerability in core server (CVE-2014-8161)
2020-01-27 16:15:00
Vulnerability in core server (CVE-2015-0241)
2020-01-27 16:15:00
Vulnerability in core server (CVE-2015-3165)
2015-05-28 14:59:00
prion
prion
Code injection
2020-01-27 16:15:00
Buffer overflow
2020-01-27 16:15:00
Double free
2015-05-28 14:59:00
cve
cve
CVE-2014-8161
2020-01-27 16:15:00
CVE-2015-0243
2020-01-27 16:15:00
CVE-2015-3165
2015-05-28 14:59:00
cvelist
cvelist
CVE-2014-8161
2020-01-27 15:29:21
CVE-2015-3166
2019-11-20 20:50:16
CVE-2015-0243
2020-01-27 15:29:28
ubuntucve
ubuntucve
CVE-2014-8161
2015-02-06 00:00:00
CVE-2015-0241
2015-02-06 00:00:00
CVE-2015-3165
2015-05-22 00:00:00
kaspersky
kaspersky
KLA10592 Denial of service vulnerability in PostgreSQL
2015-05-28 00:00:00

7.7 High

AI Score

Confidence

Low

0.085 Low

EPSS

Percentile

94.4%

JSON
Related for OPENVAS:1361412562310121401
nessus43gentoo1freebsd2openvas34mageia2veracode7debian9ubuntu2ibm1oraclelinux2osv6amazon6securityvulns6redhat6archlinux3centos2fedora2huawei2postgresql8prion8cve8cvelist8ubuntucve8kaspersky1