MiracleLinux 4 : postgresql-8.4.20-2.AXS4 (AXSA:2015-101:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-101:01 advisory. Description: PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including...

Debian: Security Advisory (DLA-152)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2015-0069)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-0244

CVE-2015-0244 affects PostgreSQL up to 9.0.19, 9.1.x up to 9.1.15, 9.2.x up to 9.2.10, 9.3.x up to 9.3.6, and 9.4.x up to 9.4.1. It arises from improper handling of errors while reading a protocol message, enabling remote attackers to perform SQL injection via crafted binary data in a parameter a...

Buffer Overflow

PostgreSQL is an advanced object-relational database management system DBMS. An information leak flaw was found in the way the PostgreSQL database server handled certain error messages. An authenticated database user could possibly obtain the results of a query they did not have privileges to...

SQL Injection

PostgreSQL is an advanced object-relational database management system DBMS. An information leak flaw was found in the way the PostgreSQL database server handled certain error messages. An authenticated database user could possibly obtain the results of a query they did not have privileges to...

Security Bulletin: PostgreSQL 9.2.8 as used in IBM QRadar SIEM 7.2.4 and IBM QRadar SIEM 7.1 MR2 is vulnerable to allow a remote authenticated attacker to obtain sensitive information. (CVE-2014-8161, CVE-2015-0241, CVE-2015-0243, CVE-2015-0244)

Summary Multiple security vulnerabilities have been discovered in the PostgreSQL component bundled with IBM QRadar version 7.1.x and 7.2.x. Vulnerability Details CVE-ID: CVE-2014-8161 Description: PostgreSQL could allow a remote authenticated attacker to obtain sensitive information, caused by a...

Amazon Linux: Security Advisory (ALAS-2015-492)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux: Security Advisory (ALAS-2015-503)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : postgresql93 (SUSE-SU-2015:0478-1)

postgresql93 was updated to version 9.3.6 to fix four security issues. These security issues were fixed : - CVE-2015-0241: Fix buffer overruns in tochar bnc916953. - CVE-2015-0243: Fix buffer overruns in contrib/pgcrypto bnc916953. - CVE-2015-0244: Fix possible loss of frontend/backend protocol...

PostgreSQL 9.0 < 9.0.19 / 9.1 < 9.1.15 / 9.2 < 9.2.10 / 9.3 < 9.3.6 / 9.4 < 9.4.1 Multiple Vulnerabilities

Binary data 8727.prm...

Moderate: Red Hat Security Advisory: postgresql92-postgresql security update

Updated postgresql packages that fix multiple security issues are now available for Red Hat Satellite 5.7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available f...

Oracle Linux 6 / 7 : postgresql (ELSA-2015-0750)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-0750 advisory. 8.4.20-2 - fix for CVE-2015-0241 CVE-2015-0243 CVE-2015-0244 CVE-2014-8161 rhbz1198651 & rhbz1198652 Tenable has extracted the preceding descriptio...

SuSE 11.3 Security Update : postgresql91 (SAT Patch Number 10389)

The PostgreSQL database server was updated to 9.1.15, fixing bugs and security issues : - Fix buffer overruns in tochar. CVE-2015-0241 - Fix buffer overrun in replacement printf functions. CVE-2015-0242 - Fix buffer overruns in contrib/pgcrypto. CVE-2015-0243 - Fix possible loss of frontend/backe...

Scientific Linux Security Update : postgresql on SL6.x, SL7.x i386/x86_64 (20150330)

An information leak flaw was found in the way the PostgreSQL database server handled certain error messages. An authenticated database user could possibly obtain the results of a query they did not have privileges to execute by observing the constraint violation error messages produced when the...

RedHat Update for postgresql RHSA-2015:0750-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 6 / 7 : postgresql (CESA-2015:0750)

Updated postgresql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

postgresql security update

CentOS Errata and Security Advisory CESA-2015:0750 Updated postgresql packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base...

Amazon Linux AMI : postgresql92 (ALAS-2015-492)

A buffer overflow flaw was found in the way PostgreSQL handled certain numeric formatting. An authenticated database user could use a specially crafted timestamp formatting template to cause PostgreSQL to crash or, under certain conditions, execute arbitrary code with the permissions of the user...

Amazon Linux AMI : postgresql93 (ALAS-2015-485)

A stack-buffer overflow flaw was found in PostgreSQL's pgcrypto module. An authenticated database user could use this flaw to cause PostgreSQL to crash or, potentially, execute arbitrary code with the permissions of the user running PostgreSQL. CVE-2015-0243 A flaw was found in way PostgreSQL...