21 matches found
Ubuntu: Security Advisory (USN-288-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-288-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for php-pear-DB FEDORA-2007-0249
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200607-04 (postgresql)
The remote host is missing updates announced in advisory GLSA 200607-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200607-04 (postgresql)
The remote host is missing updates announced in advisory GLSA 200607-04. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Debian: Security Advisory (DSA-1087-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1087-1 (postgresql)
The remote host is missing an update to postgresql announced via advisory DSA 1087-1. Several encoding problems have been discovered in PostgreSQL, a popular SQL database. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-2313 Akio Ishida and Yasuo Ohgak...
openSUSE 10 Security Update : postgresql-server (postgresql-server-1442)
This update fixes a security problem that allowed attackers to inject SQL commands into queries CVE-2006-2313, CVE-2006-2314. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE 10 Security Update : postgresql (postgresql-1443)
This update fixes a security problem that allowed attackers to inject SQL commands into queries CVE-2006-2313, CVE-2006-2314. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update postgresql-1443. T...
Fedora Core 4 : postgresql-8.0.8-1.FC4.1 (2006-579)
Mon May 22 2006 Tom Lane 8.0.8-1.FC4.1 - Update to PostgreSQL 8.0.8 includes fixes for CVE-2006-2313, CVE-2006-2314; see bug 192173 - Update to jdbc driver build 316 - Suppress noise from chcon, per bug 187744 - Repair extraneous quote in pgtcl configure script ... odd that bash didn't use to...
Fedora Core 5 : postgresql-8.1.4-1.FC5.1 (2006-578)
Mon May 22 2006 Tom Lane 8.1.4-1.FC5.1 - Update to PostgreSQL 8.1.4 includes fixes for CVE-2006-2313, CVE-2006-2314; see bug 192173 - Update to PyGreSQL 3.8 - Update to jdbc driver build 406 - Suppress noise from chcon, per bug 187744 Note that Tenable Network Security has extracted the preceding...
Debian DSA-1087-1 : postgresql - programming error
Several encoding problems have been discovered in PostgreSQL, a popular SQL database. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-2313 Akio Ishida and Yasuo Ohgaki discovered a weakness in the handling of invalidly-encoded multibyte text data...
CentOS 3 / 4 : postgresql (CESA-2006:0526)
Updated postgresql packages that fix several security vulnerabilities are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PostgreSQL is an advanced Object-Relational database management syste...
Mandrake Linux Security Advisory : postgresql (MDKSA-2006:098)
PostgreSQL 8.1.x before 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, 7.3.x before 7.3.15, and earlier versions allows context-dependent attackers to bypass SQL injection protection methods in applications via invalid encodings of multibyte characters, aka one variant of 'Encoding-Based SQL...
[SECURITY] [DSA 1087-1] New PostgreSQL packages fix encoding vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1087-1 [email protected] http://www.debian.org/security/ Martin Schulze June 3rd, 2006 http://www.debian.org/security/faq -...
USN-288-1: PostgreSQL server/client vulnerabilities
CVE-2006-2313: Akio Ishida and Yasuo Ohgaki discovered a weakness in the handling of invalidly-encoded multibyte text data. If a client application processed untrusted input without respecting its encoding and applied standard string escaping techniques such as replacing a single quote '''''''...
Ubuntu 5.04 / 5.10 : postgresql-7.4/-8.0, postgresql, psycopg, (USN-288-1)
CVE-2006-2313: Akio Ishida and Yasuo Ohgaki discovered a weakness in the handling of invalidly-encoded multibyte text data. If a client application processed untrusted input without respecting its encoding and applied standard string escaping techniques such as replacing a single quote '''''''...
[Full-disclosure] rPSA-2006-0080-1 postgresql postgresql-server
rPath Security Advisory: 2006-0080-1 Published: 2006-05-24 Products: rPath Linux 1 Rating: Severe Exposure Level Classification: Local System User Deterministic Vulnerability Updated Versions: postgresql=/conary.rpath.com@rpl:devel//1/8.1.4-1-0.1...
CVE-2006-2313
CVE-2006-2313/2314 describe encoding-based SQL injection in PostgreSQL prior to 8.1.4, 8.0.x before 8.0.8, 7.4.x before 7.4.13, and 7.3.x before 7.3.15, where context-dependent attackers could bypass SQL injection protections due to invalid encodings of multibyte characters. The root cause is imp...
RHEL 3 / 4 : postgresql (RHSA-2006:0526)
Updated postgresql packages that fix several security vulnerabilities are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PostgreSQL is an advanced Object-Relational database management syste...