Lucene search
+L

84 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.17 views

RHEL 9 : libpq (RHSA-2025:1738)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1738 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89914EPSS
Exploits10References4
AlmaLinux
AlmaLinux
added 2025/02/20 12:0 a.m.14 views

Important: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CVE-2025-1094 For more details about the security...

8.1CVSS8.3AI score0.89914EPSS
Exploits10References4
AlmaLinux
AlmaLinux
added 2025/02/20 12:0 a.m.21 views

Important: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql: PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation CVE-2025-1094 For more details about the security...

8.1CVSS8.3AI score0.89914EPSS
Exploits10References4
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.11 views

RHEL 8 : libpq (RHSA-2025:1745)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1745 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89914EPSS
Exploits10References4
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.9 views

RHEL 8 : libpq (RHSA-2025:1744)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1744 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89914EPSS
Exploits10References4
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.10 views

RHEL 9 : libpq (RHSA-2025:1733)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1733 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89914EPSS
Exploits10References4
Microsoft CVE
Microsoft CVE
added 2024/11/23 8:0 a.m.5 views

PostgreSQL libpq retains an error message from man-in-the-middle

...

3.7CVSS6.3AI score0.0038EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/11/14 3:25 p.m.379 views

Low: Red Hat Security Advisory: libpq security update

An update for libpq is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

3.7CVSS6.6AI score0.00616EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/07 8:22 a.m.31 views

Low: Red Hat Security Advisory: libpq security update

An update for libpq is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

3.7CVSS6.6AI score0.00616EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/04/11 2:30 p.m.6 views

postgresql: Client memory disclosure when connecting with Kerberos to modified server

A flaw was found In PostgreSQL. A modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions, a server can cause a libpq client to over-read and report an error message containing uninitialized bytes...

3.7CVSS6.8AI score0.00616EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2022/05/10 6:36 a.m.27 views

libpq security update

An update is available for libpq. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libpq package provides the PostgreSQL client library, which allows client...

5.9CVSS6.9AI score0.01501EPSS
Exploits0
OSV
OSV
added 2022/05/10 6:36 a.m.24 views

ALSA-2022:1891 Low: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql: libpq processes unencrypted bytes from man-in-the-middle CVE-2021-23222 For more details about the security issues, including the impact, a CVSS...

5.9CVSS7.2AI score0.01501EPSS
Exploits0References2
OSV
OSV
added 2021/06/14 7:0 p.m.7 views

ALEA-2021:2421 libpq bug fix and enhancement update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. The following packages have been upgraded to a later upstream version: libpq 13.3. BZ1966205...

7.1AI score
Exploits0
AlmaLinux
AlmaLinux
added 2021/06/14 7:0 p.m.14 views

libpq bug fix and enhancement update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. The following packages have been upgraded to a later upstream version: libpq 13.3. BZ1966205...

3.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/01/18 4:17 p.m.87 views

Important: Red Hat Security Advisory: libpq security update

An update for libpq is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.1CVSS6.7AI score0.02586EPSS
Exploits0References3
AlmaLinux
AlmaLinux
added 2020/12/14 12:34 p.m.44 views

Important: libpq security update

The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. The following packages have been upgraded to a later upstream version: libpq 12.5. BZ1898228, BZ1901558 Security Fixes: postgresql: Reconnection can downgrade connection securi...

7.6CVSS3.6AI score0.02586EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.32 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : postgresql Vulnerability (NS-SA-2019-0036)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has postgresql packages installed that are affected by a vulnerability: - A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If...

8.5CVSS7.8AI score0.05154EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/12/13 3:15 p.m.6 views

postgresql: Certain host connection parameters defeat client-side security defenses

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side...

8.5CVSS7.3AI score0.05154EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/12/07 12:0 a.m.58 views

Amazon Linux AMI : postgresql96 (ALAS-2018-1119)

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with 'host' or 'hostaddr' connection parameters from untrusted input, attackers could bypass client-side...

9.1CVSS6.9AI score0.05154EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2018/08/27 8:35 a.m.29 views

postgresql: Certain host connection parameters defeat client-side security defenses

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side...

8.5CVSS7.3AI score0.05154EPSS
Exploits0References5
Rows per page
Query Builder