postgresql92: Various security fixes. Update to 9.2.4. (important)

postgresql was updated to version 9.2.4 bnc812525: CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with "-" could be crafted to damage or destroy files within the server's data directory, even if the request is...

Design/Logic Flaw

PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the 1 pgstartbackup or 2 pgstopbackup functions...

CVE-2013-1901

PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the 1 pgstartbackup or 2 pgstopbackup functions...

CVE-2013-1901

CVE-2013-1901 concerns PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9, where REPLICATION privilege checks fail to verify that the current user is authenticated. This allows remote authenticated users to bypass backup restrictions by invoking pg_start_backup() or pg_stop_backup(), potentiall...

CVE-2012-4861

The web server in InfoSphere Data Replication Dashboard in IBM InfoSphere Replication Server 9.7 and 10.1 through 10.1.0.4 allows remote authenticated users to list directories via a direct request for a directory URL...

CVE-2012-4861

IBM InfoSphere Data Replication Dashboard (InfoSphere Replication Server) is affected by CVE-2012-4861: the dashboard web server can disclose directory listings when a specific directory URL is requested. Affected versions are 9.7 and 10.1 up to 10.1.0.4. The root cause is a directory listing vul...

CVE-2012-4861

The web server in InfoSphere Data Replication Dashboard in IBM InfoSphere Replication Server 9.7 and 10.1 through 10.1.0.4 allows remote authenticated users to list directories via a direct request for a directory URL...

Tips for DAG Exchange Backup and Replication in vSphere

vSphere Snapshot Improvements This article was initially written when vSphere 5 snapshot operations were known and expected to cause small amounts of I/O stun to a VM's guest OS. Improvements in the latter vSphere versions, including significant changes to snapshot operation methodology in vSpher...

Error “Unexpected VHD Feature Mask ‘6’” on Hyper-V backup or replication job

Challenge The feature mask 6 error is Hyper-V specific. This KB covers that error and how to resolve it. Cause Feature mask 6 errors most often occur when a Hyper-V VM was a Physical to Virtual conversion using third party software. The issue is that some third party converter software creates th...

CentOS Update for 389-ds-base CESA-2013:0628 centos6

Check for the Version of 389-ds-base OpenVAS Vulnerability Test CentOS Update for 389-ds-base CESA-2013:0628 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

Scientific Linux Security Update : 389-ds-base on SL6.x i386/x86_64 (20130311)

A flaw was found in the way LDAPv3 control data was handled by 389 Directory Server. If a malicious user were able to bind to the directory even anonymously and send an LDAP request containing crafted LDAPv3 control data, they could cause the server to crash, denying service to the directory...

389 security update

CentOS Errata and Security Advisory CESA-2013:0628 Updated 389-ds-base packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scori...

PT-2013-3208 · Oracle +1 · Mysql Server +1

Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 5.5.29 and earlier Description: The issue affects the availability of the system, allowing remote authenticated users to impact it via unknown vectors related to Server Replication. Recommendations: For Oracle MySQL...

RHEL 6 : 389-ds-base (RHSA-2013:0628)

Updated 389-ds-base packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Moderate: Red Hat Security Advisory: 389-ds-base security and bug fix update

Updated 389-ds-base packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

How to Forcibly Stop Stuck Jobs

Notice of Future Change This article may be retired in the future. As the product has matured, the incidence of jobs or tasks becoming "stuck" has decreased significantly. However, there are instances where a job might be executing a background task, giving the appearance that it has become stuck...

MariaDB 5.5.0 < 5.5.29 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.5.29. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.5.29 advisory. - Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users t...

MariaDB 5.3.0 < 5.3.12 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.3.12. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.3.12 advisory. - Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users t...

MariaDB 5.2.0 < 5.2.14 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.2.14. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.2.14 advisory. - Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users t...

MariaDB 5.1.0 < 5.1.67 Multiple Vulnerabilities

The version of MariaDB installed on the remote host is prior to 5.1.67. It is, therefore, affected by multiple vulnerabilities as referenced in the 5.1.67 advisory. - Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows local users t...