SLES9: Security update for PostgreSQL

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: postgresql-libs postgresql-pl postgresql-devel postgresql-docs postgresql postgresql-server postgresql-contrib For more information, please visit the...

[SECURITY] [DSA 1460-1] New postgresql-8.1 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1460-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 13, 2008 http://www.debian.org/security/faq -...

Mandrake Linux Security Advisory : postgresql (MDKSA-2007:094)

A weakness in previous versions of PostgreSQL was found in the security definer functions in which an authenticated but otherwise unprivileged SQL user could use temporary objects to execute arbitrary code with the privileges of the security-definer function. IMPORTANT NOTICE FOR CORPORATE...

Fedora Core 5 : postgresql-8.1.4-1.FC5.1 (2006-578)

Mon May 22 2006 Tom Lane 8.1.4-1.FC5.1 - Update to PostgreSQL 8.1.4 includes fixes for CVE-2006-2313, CVE-2006-2314; see bug 192173 - Update to PyGreSQL 3.8 - Update to jdbc driver build 406 - Suppress noise from chcon, per bug 187744 Note that Tenable Network Security has extracted the preceding...

CVE-2005-0244

PostgreSQL 8.0.0 and earlier allows local users to bypass the EXECUTE permission check for functions by using the CREATE AGGREGATE command...

PostgreSQL 8.01 - Remote Reboot (Denial of Service)

/ PostgreSQL Remote Reboot include include include include include define DEFAULTPORT "5321" define DEFAULTDB "postgresql" define FUNCNAME "uKttest" define TABLENAME "unl0cktable" char str4000; char create="CREATE OR REPLACE FUNCTION %s RETURNS integer AS $$\n"; char declare = "DECLARE\n"; char c...

Important: Red Hat Security Advisory: postgresql security update

Updated PostgreSQL packages to fix various security flaws are now available for Red Hat Enterprise Linux 2.1AS. This update has been rated as having important security impact by the Red Hat Security Response Team. PostgreSQL is an advanced Object-Relational database management system DBMS. A flaw...

RHEL 2.1 : postgresql (RHSA-2005:150)

Updated PostgreSQL packages to fix various security flaws are now available for Red Hat Enterprise Linux 2.1AS. This update has been rated as having important security impact by the Red Hat Security Response Team. PostgreSQL is an advanced Object-Relational database management system DBMS. A flaw...

Important: Red Hat Security Advisory: postgresql security update

Updated postresql packages that correct various security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. A flaw in the LOAD command in PostgreSQL was discovered. A local user could use...

RHEL 3 : rh-postgresql (RHSA-2005:141)

Updated PostgreSQL packages to fix various security flaws are now available for Red Hat Enterprise Linux 3. PostgreSQL is an advanced Object-Relational database management system DBMS. A flaw in the LOAD command in PostgreSQL was discovered. A local user could use this flaw to load arbitrary shar...

CVE-2005-0246

The intagg contrib module for PostgreSQL 8.0.0 and earlier allows attackers to cause a denial of service crash via crafted arrays...

CVE-2005-0227

PostgreSQL pgsql 7.4.x, 7.2.x, and other versions allows local users to load arbitrary shared libraries and execute code via the LOAD extension...

[SECURITY] [DSA 667-1] New PostgreSQL packages fix arbitrary library loading

-------------------------------------------------------------------------- Debian Security Advisory DSA 667-1 [email protected] http://www.debian.org/security/ Martin Schulze February 4th, 2005 http://www.debian.org/security/faq -...

Low: Red Hat Security Advisory: rh-postgresql security update

Updated rh-postgresql packages that fix various bugs are now available. PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects, and user-defined types and functions. Trustix has identified improper...

CVE-2003-0901

Buffer overflow in toascii for PostgreSQL 7.2.x, and 7.3.x before 7.3.4, allows remote attackers to execute arbitrary code...

teapop SQL injection

SQL injection is possible during authentication if postgresql or mysql is used...

Important: Red Hat Security Advisory: postgresql security update

Updated PostgreSQL packages are available which correct several minor security vulnerabilities. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 PostgreSQL is an advanced Object-Relational database management system DBMS. Red Hat Linux Advanced Server 2.1 shipped with...

Important: Red Hat Security Advisory: : Updated PostgreSQL packages fix buffer overrun vulnerabilities

Updated PostgreSQL packages are available for Red Hat Linux 6.2, 7, 7.1, and 7.2 where we have backported a number of security fixes. A separate advisory deals with updated PostgreSQL packages for Red Hat Linux 7.3 and 8.0. PostgreSQL is an advanced Object-Relational database management system...

CVE-2002-0972

Buffer overflows in PostgreSQL 7.2 allow attackers to cause a denial of service and possibly execute arbitrary code via long arguments to the functions 1 lpad or 2 rpad...

CVE-2000-1199

PostgreSQL stores usernames and passwords in plaintext in 1 pgshadow and 2 pgpwd, which allows attackers with sufficient privileges to gain access to databases...