Lucene search
K

22 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : rh-postgresql96-postgresql-9.6.10-1.AXS4 (AXSA:2018-3314:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3314:01 advisory. postgresql: Certain host connection parameters defeat client-side security defenses CVE-2018-10915 postgresql: Missing authorization and memory...

9.1CVSS6.7AI score0.14142EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.23 views

RHEL 6 / 7 : rh-postgresql95-postgresql (RHSA-2018:2511)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2511 advisory. PostgreSQL is an advanced object-relational database management system DBMS. The following packages have been upgraded to a later upstre...

8.8CVSS6.8AI score0.14142EPSS
Exploits1References14
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:3391-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.06324EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2018/08/27 8:35 a.m.62 views

Important: Red Hat Security Advisory: rh-postgresql96-postgresql security update

An update for rh-postgresql96-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.1CVSS6.7AI score0.14142EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2018/08/20 10:51 a.m.74 views

Important: Red Hat Security Advisory: rh-postgresql95-postgresql security update

An update for rh-postgresql95-postgresql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.7AI score0.14142EPSS
Exploits1References7
OPENSUSE Linux
OPENSUSE Linux
added 2018/02/23 12:8 a.m.110 views

Security update for postgresql95 (important)

This update for postgresql95 fixes the following issues: Upate to PostgreSQL 9.5.11: Security issues fixed: https://www.postgresql.org/docs/9.5/static/release-9-5-11.html CVE-2018-1053, boo1077983: Ensure that all temporary files made by pgupgrade are non-world-readable. boo1079757: Rename...

7.5CVSS8.2AI score0.61566EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/02/23 12:0 a.m.31 views

openSUSE Security Update : postgresql95 (openSUSE-2018-204)

This update for postgresql95 fixes the following issues : Upate to PostgreSQL 9.5.11 : Security issues fixed : - https://www.postgresql.org/docs/9.5/static/release-9-5-11.html - CVE-2018-1053, boo1077983: Ensure that all temporary files made by pgupgrade are non-world-readable. - boo1079757: Rena...

9.8CVSS6.7AI score0.61566EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2018/02/23 12:0 a.m.31 views

openSUSE: Security Advisory for postgresql95 (openSUSE-SU-2018:0529-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.61566EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.31 views

SUSE SLED12 / SLES12 Security Update : postgresql96 (SUSE-SU-2017:3391-1)

This update for postgresql96 fixes the following issues: Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-15099: Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions and RLS policies in all cases...

8.1CVSS7AI score0.06324EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2017/12/26 12:0 a.m.39 views

openSUSE Security Update : postgresql96 (openSUSE-2017-1411)

This update for postgresql96 fixes the following issues : Security issues fixed : - CVE-2017-15098: Fix crash due to rowtype mismatch in jsonbpopulaterecordset bsc1067844. - CVE-2017-15099: Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions and RLS policies in all cases...

8.1CVSS7AI score0.06324EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/12/07 12:0 a.m.63 views

Amazon Linux AMI : postgresql95 / postgresql96 (ALAS-2017-930)

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.CVE-2017-12172 INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL disclose table...

8.1CVSS7.2AI score0.06324EPSS
Exploits0References4
Amazon
Amazon
added 2017/12/05 12:0 a.m.51 views

Medium: postgresql95, postgresql96

Issue Overview: Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.CVE-2017-12172 INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL...

8.1CVSS7.9AI score0.06324EPSS
Exploits0
CVE
CVE
added 2017/11/22 6:0 p.m.304 views

CVE-2017-15099

CVE-2017-15099 involves an information-disclosure and access-restriction bypass in PostgreSQL through faulty checks in the PostgreSQL engine when using "INSERT … ON CONFLICT DO UPDATE". Affected versions are PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10. The vulnerabili...

6.5CVSS6.9AI score0.06324EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/11/22 6:0 p.m.32 views

CVE-2017-15099

INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contents that the invoker lacks privilege to read. These exploits affect only tables where the attacker lacks full read access but has both INSERT and UPDATE...

7.1AI score0.06324EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2017/11/15 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-3479-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.3AI score0.06324EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/11/13 10:19 a.m.38 views

CVE-2017-15099

INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL 10.x before 10.1, 9.6.x before 9.6.6, and 9.5.x before 9.5.10 disclose table contents that the invoker lacks privilege to read. These exploits affect only tables where the attacker lacks full read access but has both INSERT and UPDATE...

6.5CVSS4.1AI score0.06324EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/11/10 12:0 a.m.42 views

Debian DSA-4028-1 : postgresql-9.6 - security update

Several vulnerabilities have been found in the PostgreSQL database system : - CVE-2017-15098 Denial of service and potential memory disclosure in the jsonpopulaterecordset and jsonbpopulaterecordset functions - CVE-2017-15099 Insufficient permissions checks in 'INSERT ... ON CONFLICT DO UPDATE'...

8.1CVSS6.9AI score0.06324EPSS
Exploits0References6
ArchLinux
ArchLinux
added 2017/11/10 12:0 a.m.26 views

[ASA-201711-17] postgresql: multiple issues

Arch Linux Security Advisory ASA-201711-17 ========================================== Severity: Medium Date : 2017-11-10 CVE-ID : CVE-2017-15098 CVE-2017-15099 Package : postgresql Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-485 Summary ======= The package...

8.1CVSS0.4AI score0.06324EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2017/11/10 12:0 a.m.30 views

[ASA-201711-18] postgresql-old-upgrade: multiple issues

Arch Linux Security Advisory ASA-201711-18 ========================================== Severity: Medium Date : 2017-11-10 CVE-ID : CVE-2017-15098 CVE-2017-15099 Package : postgresql-old-upgrade Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-486 Summary ======= The...

8.1CVSS0.5AI score0.06324EPSS
Exploits0References4
Debian
Debian
added 2017/11/09 9:40 p.m.28 views

[SECURITY] [DSA 4028-1] postgresql-9.6 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4028-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff November 09, 2017 https://www.debian.org/security/faq -...

8.1CVSS8.1AI score0.06324EPSS
Exploits0
Rows per page
Query Builder