38 matches found
MiracleLinux 4 : rh-postgresql96-postgresql-9.6.10-1.AXS4 (AXSA:2018-3314:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3314:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...
K000148351: PostgreSQL vulnerabilities CVE-2017-15098, CVE-2017-14798, CVE-2016-7048, CVE-2016-5424, and CVE-2016-5423
Security Advisory Description CVE-2017-15098 Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, and 9.3.x before 9.3.20 can crash the server or disclose a few bytes of server memory...
RHEL 6 / 7 : rh-postgresql95-postgresql (RHSA-2018:2511)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2511 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstre...
SUSE CVE-2017-15098
Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, 9.5.x before 9.5.10, 9.4.x before 9.4.15, and 9.3.x before 9.3.20 can crash the server or disclose a few bytes of server memory...
SUSE: Security Advisory (SUSE-SU-2017:3391-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Important: Red Hat Security Advisory: rh-postgresql96-postgresql security update
An update for rh-postgresql96-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Important: Red Hat Security Advisory: rh-postgresql95-postgresql security update
An update for rh-postgresql95-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
Juniper Junos Space < 17.2R1 Multiple Vulnerabilities (JSA10838)
According to its self-reported version number, the remote Junos Space version is prior to 17.2R1. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid108520; scriptversion"1.8";...
Security update for postgresql95 (important)
This update for postgresql95 fixes the following issues: Upate to PostgreSQL 9.5.11: Security issues fixed: https://www.postgresql.org/docs/9.5/static/release-9-5-11.html CVE-2018-1053, boo1077983: Ensure that all temporary files made by pgupgrade are non-world-readable. boo1079757: Rename...
openSUSE Security Update : postgresql95 (openSUSE-2018-204)
This update for postgresql95 fixes the following issues : Upate to PostgreSQL 9.5.11 : Security issues fixed : - https://www.postgresql.org/docs/9.5/static/release-9-5-11.html - CVE-2018-1053, boo1077983: Ensure that all temporary files made by pgupgrade are non-world-readable. - boo1079757: Rena...
openSUSE: Security Advisory for postgresql95 (openSUSE-SU-2018:0529-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : postgresql94 (openSUSE-2018-38)
This update for postgresql94 fixes the following issues : Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. This issue did not affect SUSE...
SUSE SLES11 Security Update : postgresql94 (SUSE-SU-2018:0077-1)
This update for postgresql94 fixes the following issues: Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. This issue did not affect SUSE...
SUSE SLED12 / SLES12 Security Update : postgresql94 (SUSE-SU-2018:0081-1)
This update for postgresql94 fixes the following issues: Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. This issue did not affect SUSE...
SUSE-SU-2018:0081-1 Security update for postgresql94
This update for postgresql94 fixes the following issues: Security issues fixed: - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. This issue did not affect SUSE...
SUSE-SU-2018:0077-1 Security update for postgresql94
This update for postgresql94 fixes the following issues: Security issues fixed: - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-12172: Start scripts permit database administrator to modify root-owned files. This issue did not affect SUSE...
openSUSE Security Update : postgresql96 (openSUSE-2017-1411)
This update for postgresql96 fixes the following issues : Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-15099: Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions and RLS policies in all cases...
SUSE SLED12 / SLES12 Security Update : postgresql96 (SUSE-SU-2017:3391-1)
This update for postgresql96 fixes the following issues: Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-15099: Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions and RLS policies in all cases...
Amazon Linux AMI : postgresql95 / postgresql96 (ALAS-2017-930)
Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.CVE-2017-12172 INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL disclose table...
Amazon Linux AMI : postgresql92 / postgresql93,postgresql94 (ALAS-2017-931)
Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine. CVE-2017-12172 Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in...