Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2022 Greenbone AGOPENVAS:1361412562311122005791
HistoryAug 26, 2022 - 12:00 a.m.

Ubuntu: Security Advisory (USN-79-1)

2022-08-2600:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
5

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.626 Medium

EPSS

Percentile

97.8%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.12.2005.79.1");
  script_cve_id("CVE-2005-0244", "CVE-2005-0245", "CVE-2005-0246", "CVE-2005-0247");
  script_tag(name:"creation_date", value:"2022-08-26 07:43:23 +0000 (Fri, 26 Aug 2022)");
  script_version("2024-02-02T05:06:10+0000");
  script_tag(name:"last_modification", value:"2024-02-02 05:06:10 +0000 (Fri, 02 Feb 2024)");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");

  script_name("Ubuntu: Security Advisory (USN-79-1)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2022 Greenbone AG");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU4\.10");

  script_xref(name:"Advisory-ID", value:"USN-79-1");
  script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-79-1");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'postgresql' package(s) announced via the USN-79-1 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"The execution of custom PostgreSQL functions can be restricted with
the EXECUTE privilege. However, previous versions did not check this
privilege when executing a function which was part of an aggregate.
As a result, any database user could circumvent the EXECUTE restriction of
functions with a particular (but very common) parameter structure by
creating an aggregate wrapper around the function. (CAN-2005-0244)

Several buffer overflows have been discovered in the SQL parser. These
could be exploited by any database user to crash the PostgreSQL server
or execute arbitrary code with the privileges of the server.
(CAN-2005-0245, CAN-2005-0247)

Finally, this update fixes a Denial of Service vulnerability of the
contributed 'intagg' module. By constructing specially crafted arrays,
a database user was able to corrupt and crash the PostgreSQL server.
(CAN-2005-0246). Please note that this module is part of the
'postgresql-contrib' package, which is not officially supported by
Ubuntu.");

  script_tag(name:"affected", value:"'postgresql' package(s) on Ubuntu 4.10.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

release = dpkg_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "UBUNTU4.10") {

  if(!isnull(res = isdpkgvuln(pkg:"libecpg-dev", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"libecpg4", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"libpgtcl", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"libpgtcl-dev", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"libpq3", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"postgresql", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"postgresql-client", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"postgresql-contrib", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"postgresql-dev", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"postgresql-doc", ver:"7.4.5-3ubuntu0.4", rls:"UBUNTU4.10"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Related

openvas 14
nessus 14
ubuntu 1
redhat 3
freebsd 2
gentoo 2
debian 2
ubuntucve 4
cve 4
osv 1
postgresql 4
suse 3
securityvulns 1
openvas
openvas
FreeBSD Ports: postgresql, postgresql-server, ja-postgresql
2008-09-04 00:00:00
FreeBSD Ports: postgresql, postgresql-server, ja-postgresql
2008-09-04 00:00:00
SLES9: Security update for postgresql
2009-10-10 00:00:00
nessus
nessus
Ubuntu 4.10 : postgresql vulnerabilities (USN-79-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : postgresql (MDKSA-2005:040)
2005-02-18 00:00:00
RHEL 4 : postgresql (RHSA-2005:138)
2005-02-22 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2005-02-11 00:00:00
redhat
redhat
(RHSA-2005:138) postgresql security update
2005-02-15 00:00:00
(RHSA-2005:141) rh-postgresql security update
2005-02-14 00:00:00
(RHSA-2005:150) postgresql security update
2005-02-16 00:00:00
freebsd
freebsd
postgresql -- multiple vulnerabilities
2005-02-01 00:00:00
postgresql -- multiple buffer overflows in PL/PgSQL parser
2005-02-07 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2005-02-07 00:00:00
PostgreSQL: Buffer overflows in PL/PgSQL parser
2005-02-14 00:00:00
debian
debian
[SECURITY] [DSA 683-1] New postgresql packages fix arbitrary code execution
2005-02-15 16:03:24
[SECURITY] [DSA 683-1] New postgresql packages fix arbitrary code execution
2005-02-15 00:00:00
ubuntucve
ubuntucve
CVE-2005-0247
2005-05-02 00:00:00
CVE-2005-0245
2005-02-01 00:00:00
CVE-2005-0246
2005-05-02 00:00:00
cve
cve
CVE-2005-0247
2005-05-02 04:00:00
CVE-2005-0245
2005-02-01 05:00:00
CVE-2005-0246
2005-05-02 04:00:00
osv
osv
postgresql - buffer overflows
2005-02-15 00:00:00
postgresql
postgresql
Vulnerability in contrib module (CVE-2005-0246)
2005-05-02 04:00:00
Vulnerability in core server (CVE-2005-0245)
2005-02-01 05:00:00
Vulnerability in core server (CVE-2005-0247)
2005-05-02 04:00:00
suse
suse
remote code execution in postgresql
2005-04-20 08:52:32
remote code execution in cvs
2005-04-18 14:31:00
race condition, arbitrary code execution in sudo
2005-06-24 12:44:43
securityvulns
securityvulns
[Full-disclosure] SUSE Security Announcement: cvs (SUSE-SA:2005:024)
2005-04-18 00:00:00

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.626 Medium

EPSS

Percentile

97.8%

JSON
Related for OPENVAS:1361412562311122005791
openvas14nessus14ubuntu1redhat3freebsd2gentoo2debian2ubuntucve4cve4osv1postgresql4suse3securityvulns1