EulerOS 2.0 SP1 : postgresql (EulerOS-SA-2017-1231)

According to the versions of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that authenticating to a PostgreSQL database account with an empty password was possible despite libpq's refusal to send an emp...

postgresql: pg_user_mappings view discloses passwords to users lacking server privileges

An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote, authenticated attacker could potentially use this flaw to retrieve passwords from the user mappings defined by the foreign server owners without actually having the...

BSA-2017-395

Security Advisory ID : BSA-2017-395 Component : PostgreSQL Revision : 1.0: Interim An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote authenticated attacker could potentially use this flaw to retrieve passwords from the use...

CVE-2017-7547

An authorization flaw was found in the way PostgreSQL handled access to the pgusermappings view on foreign servers. A remote, authenticated attacker could potentially use this flaw to retrieve passwords from the user mappings defined by the foreign server owners without actually having the...