Lucene search
Copyright (C) 2009 Greenbone Networks GmbHOPENVAS:830261HistoryApr 09, 2009 - 12:00 a.m.
Mandriva Update for postgresql MDKSA-2007:037 (postgresql)
2009-04-0900:00:00
Copyright (C) 2009 Greenbone Networks GmbH
plugins.openvas.org
9
0.014 Low
EPSS
Percentile
85.0%
Check for the Version of postgresql
###############################################################################
# OpenVAS Vulnerability Test
#
# Mandriva Update for postgresql MDKSA-2007:037 (postgresql)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
include("revisions-lib.inc");
tag_insight = "Jeff Trout discovered that the PostgreSQL server did not sufficiently
check data types of SQL function arguments in some cases. A user could
then exploit this to crash the database server or read out arbitrary
locations of the server's memory, which could be used to retrieve
database contents that the user should not be able to see. Note that a
user must be authenticated in order to exploit this (CVE-2007-0555).
As well, Jeff Trout also discovered that the query planner did not
verify that a table was still compatible with a previously-generated
query plan, which could be exploted to read out arbitrary locations of
the server's memory by using ALTER COLUMN TYPE during query execution.
Again, a user must be authenticated in order to exploit this
(CVE-2007-0556).
Updated packages have been patched to correct these issues.";
tag_affected = "postgresql on Mandriva Linux 2006.0,
Mandriva Linux 2006.0/X86_64,
Mandriva Linux 2007.0,
Mandriva Linux 2007.0/X86_64";
tag_solution = "Please Install the Updated Packages.";
if(description)
{
script_xref(name : "URL" , value : "http://lists.mandriva.com/security-announce/2007-02/msg00006.php");
script_id(830261);
script_version("$Revision: 6568 $");
script_tag(name:"last_modification", value:"$Date: 2017-07-06 15:04:21 +0200 (Thu, 06 Jul 2017) $");
script_tag(name:"creation_date", value:"2009-04-09 13:53:01 +0200 (Thu, 09 Apr 2009)");
script_tag(name:"cvss_base", value:"8.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:N/A:C");
script_xref(name: "MDKSA", value: "2007:037");
script_cve_id("CVE-2007-0555", "CVE-2007-0556");
script_name( "Mandriva Update for postgresql MDKSA-2007:037 (postgresql)");
script_summary("Check for the Version of postgresql");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
script_family("Mandrake Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/mandriva_mandrake_linux", "ssh/login/release");
script_tag(name : "affected" , value : tag_affected);
script_tag(name : "solution" , value : tag_solution);
script_tag(name : "insight" , value : tag_insight);
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("pkg-lib-rpm.inc");
release = get_kb_item("ssh/login/release");
res = "";
if(release == NULL){
exit(0);
}
if(release == "MNDK_2007.0")
{
if ((res = isrpmvuln(pkg:"libecpg5", rpm:"libecpg5~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libecpg5-devel", rpm:"libecpg5-devel~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpq4", rpm:"libpq4~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpq4-devel", rpm:"libpq4-devel~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql", rpm:"postgresql~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-contrib", rpm:"postgresql-contrib~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-devel", rpm:"postgresql-devel~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-docs", rpm:"postgresql-docs~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-pl", rpm:"postgresql-pl~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plperl", rpm:"postgresql-plperl~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plpgsql", rpm:"postgresql-plpgsql~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plpython", rpm:"postgresql-plpython~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-pltcl", rpm:"postgresql-pltcl~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-server", rpm:"postgresql-server~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-test", rpm:"postgresql-test~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ecpg5", rpm:"lib64ecpg5~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ecpg5-devel", rpm:"lib64ecpg5-devel~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64pq4", rpm:"lib64pq4~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64pq4-devel", rpm:"lib64pq4-devel~8.1.7~1.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
if(release == "MNDK_2006.0")
{
if ((res = isrpmvuln(pkg:"libecpg5", rpm:"libecpg5~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libecpg5-devel", rpm:"libecpg5-devel~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpq4", rpm:"libpq4~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"libpq4-devel", rpm:"libpq4-devel~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql", rpm:"postgresql~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-contrib", rpm:"postgresql-contrib~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-devel", rpm:"postgresql-devel~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-docs", rpm:"postgresql-docs~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-jdbc", rpm:"postgresql-jdbc~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-pl", rpm:"postgresql-pl~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plperl", rpm:"postgresql-plperl~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plpgsql", rpm:"postgresql-plpgsql~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-plpython", rpm:"postgresql-plpython~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-pltcl", rpm:"postgresql-pltcl~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-server", rpm:"postgresql-server~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"postgresql-test", rpm:"postgresql-test~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ecpg5", rpm:"lib64ecpg5~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64ecpg5-devel", rpm:"lib64ecpg5-devel~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64pq4", rpm:"lib64pq4~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"lib64pq4-devel", rpm:"lib64pq4-devel~8.0.11~0.1.20060mdk", rls:"MNDK_2006.0")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99); # Not vulnerable.
exit(0);
}
Related
fedora
fedora
[SECURITY] Fedora Core 6 Update: postgresql-8.1.7-1.fc6
2007-02-05 17:08:15
[SECURITY] Fedora Core 5 Update: postgresql-8.1.7-1.fc5
2007-02-05 17:09:11
[SECURITY] Fedora Core 5 Update: postgresql-8.1.9-1.fc5
2007-06-06 17:24:23
openvas
openvas
Solaris Update for PostgresSQL 123590-12
2010-02-03 00:00:00
Solaris Update for PostgresSQL 123590-10
2009-06-03 00:00:00
Fedora Update for postgresql FEDORA-2007-197
2009-02-27 00:00:00
nessus
nessus
Ubuntu 5.10 / 6.06 LTS / 6.10 : postgresql-7.4/-8.0/-8.1 vulnerabilities (USN-417-1)
2007-11-10 00:00:00
Ubuntu 6.06 LTS / 6.10 : postgresql-8.1 regression (USN-417-2)
2007-11-10 00:00:00
openSUSE 10 Security Update : postgresql (postgresql-3243)
2007-10-17 00:00:00
securityvulns
securityvulns
[Full-disclosure] [USN-417-1] PostgreSQL vulnerabilities
2007-02-05 00:00:00
PostgreSQL multiple security vulnerabilities
2007-02-05 00:00:00
ubuntu
ubuntu
PostgreSQL vulnerabilities
2007-02-06 00:00:00
gentoo
gentoo
PostgreSQL: Multiple vulnerabilities
2007-03-16 00:00:00
redhat
redhat
(RHSA-2007:0068) Moderate: postgresql security update
2007-03-14 00:00:00
(RHSA-2007:0067) Moderate: postgresql security update
2007-02-07 00:00:00
(RHSA-2007:0064) Moderate: postgresql security update
2007-02-07 00:00:00
cvelist
cvelist
CVE-2007-0555
2007-02-06 01:00:00
CVE-2007-0556
2007-02-06 01:00:00
postgresql
postgresql
Vulnerability in core server (CVE-2007-0556)
2007-02-06 01:28:00
Vulnerability in core server (CVE-2007-0555)
2007-02-06 01:28:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:16:46
Denial Of Service (DoS)
2020-04-10 00:16:46
prion
prion
Memory corruption
2007-02-06 01:28:00
Code injection
2007-02-06 01:28:00
ubuntucve
ubuntucve
CVE-2007-0555
2007-02-06 00:00:00
CVE-2007-0556
2007-02-06 00:00:00
debian
debian
[SECURITY] [DSA 1261-1] New PostgreSQL packages fix several vulnerabilities
2007-02-15 00:00:00
cve
cve
CVE-2007-0555
2007-02-06 01:28:00
CVE-2007-0556
2007-02-06 01:28:00
oraclelinux
oraclelinux
Moderate: postgresql security update
2007-05-08 00:00:00
Moderate: postgresql security update
2007-02-07 00:00:00
centos
centos
postgresql, rh security update
2007-02-07 23:16:48