19 matches found
SUSE CVE-2019-10209
Postgresql, versions 11.x before 11.5, is vulnerable to a memory disclosure in cross-type comparison for hashed subplan...
Mageia: Security Advisory (MGASA-2019-0225)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: PostgreSQL vulnerabilities in IBM Robotic Process Automation with Automation Anywhere (CVE-2019-10209, 10211, 10210, 10208)
Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to attacks involving PostgreSQL. Vulnerability Details CVEID: CVE-2019-10209 DESCRIPTION: PostgreSQL could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when user-defined hash...
CVE-2019-10209
CVE-2019-10209 affects PostgreSQL 11.x before 11.5, where a memory disclosure occurs due to a cross-type comparison in hashed subplans. The vulnerability could allow an attacker to read arbitrary bytes of server memory under certain conditions related to user-defined hash operators; the Arch Linu...
Fedora 29 : postgresql (2019-5fbbf73269)
New upstream release 10.10 Per release notes: https://www.postgresql.org/docs/11/release-10-10.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much a...
Fedora 30 : libpq / postgresql (2019-986fce48b4)
New upstream release 11.5 Per release notes: https://www.postgresql.org/docs/11/release-11-5.html Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...
Fedora Update for postgresql FEDORA-2019-986fce48b4
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Debian DSA-4493-1 : postgresql-11 - security update
Two security issues have been discovered in the PostgreSQL database system, which could result in privilege escalation, denial of service or memory disclosure. For additional information please refer to the upstream announcement at https://www.postgresql.org/about/news/1960/ C Tenable Network...
[ASA-201908-8] postgresql: multiple issues
Arch Linux Security Advisory ASA-201908-8 ========================================= Severity: Medium Date : 2019-08-10 CVE-ID : CVE-2019-10208 CVE-2019-10209 Package : postgresql Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1019 Summary ======= The package...
[ASA-201908-7] postgresql-libs: multiple issues
Arch Linux Security Advisory ASA-201908-7 ========================================= Severity: Medium Date : 2019-08-10 CVE-ID : CVE-2019-10208 CVE-2019-10209 Package : postgresql-libs Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1019 Summary ======= The package...
USN-4090-1: PostgreSQL vulnerabilities
Tom Lane discovered that PostgreSQL did not properly restrict functions declared as "SECURITY DEFINER". An attacker could use this to execute arbitrary SQL with the permissions of the function owner. CVE-2019-10208 Andreas Seltenreich discovered that PostgreSQL did not properly handle user-define...
Ubuntu: Security Advisory (USN-4090-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 4493-1] postgresql-11 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4493-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 08, 2019 https://www.debian.org/security/faq -...
Vulnerability in core server (CVE-2019-10209)
Memory disclosure in cross-type comparison for hashed subplan In a database containing hypothetical, user-defined hash equality operators, an attacker could read arbitrary bytes of server memory. For an attack to become possible, a superuser would need to create unusual operators. It is possible...
KLA11539 Multiple vulnerabilities in PostgreSQL
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A vulnerability in PostgreSQL can be exploited to execute...
Security fix for the ALT Linux 10 package postgresql12 version 11.5-alt1
Aug. 7, 2019 Alexei Takaseev 11.5-alt1 - 11.5 Fixes CVE-2019-10208, CVE-2019-10209...
Security fix for the ALT Linux 10 package postgresql14 version 11.5-alt1
Aug. 7, 2019 Alexei Takaseev 11.5-alt1 - 11.5 Fixes CVE-2019-10208, CVE-2019-10209...
Security fix for the ALT Linux 8 package postgresql12 version 11.5-alt0.M80P.1
Aug. 7, 2019 Alexei Takaseev 11.5-alt0.M80P.1 - 11.5 Fixes CVE-2019-10208, CVE-2019-10209...
Security fix for the ALT Linux 9 package postgresql12 version 11.5-alt1
Aug. 7, 2019 Alexei Takaseev 11.5-alt1 - 11.5 Fixes CVE-2019-10208, CVE-2019-10209...