5 matches found
PostgreSQL 临时文件创建漏洞(CVE-2013-1902)
BUGTRAQ ID: 58877 CVECAN ID: CVE-2013-1902 PostgreSQL是一款高级对象-关系型数据库管理系统,支持扩展的SQL标准子集。 PostgreSQL 9.2.4, 9.1.9, 9.0.13之前版本存用可预测的文件名生成了不安全的临时文件,本地攻击者可以进行符号链接攻击。 0 Debian Linux 6.0 x PostgreSQL 9.x 厂商补丁: PostgreSQL ---------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.postgresql.org...
PostgreSQL < 8.4.17 Multiple Vulnerabilities
Binary data 6746.prm...
PostgreSQL < 9.0.13 Multiple Vulnerabilities
Binary data 6745.prm...
CVE-2013-1902
PostgreSQL, 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, 8.4.x before 8.4.17, and 8.3.x before 8.3.23 generates insecure temporary files with predictable filenames, which has unspecified impact and attack vectors related to "graphical installers for Linux and Mac OS X."...
CVE-2013-1902
CVE-2013-1902 concerns PostgreSQL versions 8.3.x before 8.3.23, 8.4.x before 8.4.17, 9.0.x before 9.0.13, 9.1.x before 9.1.9, and 9.2.x before 9.2.4, which generate insecure temporary files with predictable filenames. The description notes an unspecified impact and attack vectors related to graph...