62 matches found
CVE-2024-40575
An issue in Huawei Technologies opengauss openGauss 5.0.0 build v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes...
Huawei Technologies has an unspecified vulnerability
Huawei openGauss is China's Huawei Huawei company an open source relational database management system . A security vulnerability exists in Huawei openGauss, which can be exploited by an attacker to cause a denial of service by modifying table properties...
CVE-2024-40575
An issue in Huawei Technologies opengauss openGauss 5.0.0 build v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes...
CVE-2024-40575
An issue in Huawei Technologies opengauss openGauss 5.0.0 build v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes...
CVE-2024-40575
An issue in Huawei Technologies opengauss openGauss 5.0.0 build v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes...
CVE-2024-40575
CVE-2024-40575 affects Huawei openGauss (openGauss 5.0.0 build) with v7.3.0. The issue allows a local attacker to cause a denial of service by modifying table attributes. Root cause is described as a modification of table attributes, leading to DoS. Some sources (e.g., Red Hat CVE page) reiterate...
Huawei openGauss 安全漏洞
Huawei openGauss is an open source relational database management system from Huawei China. A security vulnerability exists in Huawei openGauss version 5.0.0, which originates from a vulnerability that could allow a local attacker to cause a denial of service by modifying table properties...
CVE-2024-40575
An issue in Huawei Technologies opengauss openGauss 5.0.0 build v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes...
openGauss: Ensuring the Existence of the Socket File
Some application programs may search for the socket file in the /tmp directory to deceive the server. During the system startup, the socket file /tmp/ $ USER gaussdb/.s.PGSQL. $PGPORT is created by default to prevent some applications from creating or overwriting the socket file in the /tmp...
openGauss: Ensuring the Existence of the server.crt File
The best solution to prevent TCP server spoofing is to use the SSL certificate and ensure that the server certificate is verified on the client. Therefore, the server must be configured to use only the hostssl connection, and the server.key key and server.crt certificate files using the SSL must ...
openGauss: Configuring Kerberos Authentication in openGauss
Use gsom to enable and disable Kerberos authentication in openGauss. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
openGauss: Restricting the Permission for the data Directory
The best solution to prevent TCP server spoofing is to use the SSL certificate and ensure that the server certificate is verified on the client. Therefore, the server must be configured to use only the hostssl connection, and the server.key key and server.crt certificate files using the SSL must ...
openGauss: Restricting the Permission for the postgresql.conf File
The configuration file postgresql.conf stores the default database configuration. To prevent the parameters in the file from being tampered and protect customer information from security threats, this file directory must be protected and deny unauthorized user access. Copyright C 2020 Greenbone...
openGauss: Restricting the Permission for the ${GAUSSHOME}/share Directory
The $GAUSSHOME /share directory stores the shared components of openGauss. To prevent them from being tampered or damaged, the directory must be protected and deny unauthorized user access. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced source...
openGauss: Restricting the Permission for the ${GAUSSHOME}/bin Directory
The $GAUSSHOME/bin directory stores database binary files. To prevent them from being tampered or damaged and protect customer information from security threats, this directory must be protected and deny unauthorized user access. Copyright C 2020 Greenbone Networks GmbH Some text descriptions mig...
openGauss: Restricting the Permission for the pg_hba.conf File
The configuration file pghba.conf stores the configuration information about database connections. To prevent the parameters in the file from being tampered and protect customer information from security threats, this file directory must be protected and deny unauthorized user access. Copyright C...
openGauss: Restricting the Permission for the Database Home Directory
$GAUSSHOME is the installation directory of openGauss. To prevent the installation package from being tampered or damaged and protect customer network from security threats, this directory must be protected and deny unauthorized user access. Copyright C 2020 Greenbone Networks GmbH Some text...
openGauss: Authentication Parameters
Set login parameters for scanning openGauss database. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openGauss: Setting Source IP Address for host Entries in the pg_hba.conf File
If source IP address is set to all or 0.0.0.0/0 for host entries, any IP addresses can access the database. You are advised to set source IP address for host entries to the IP address that needs to connect to the database. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be...
openGauss: Enabling the Auditing of Permission Granting and Revoking
The parameter auditgrantrevoke specifies whether to audit the permissions granted to and revoked from database users. After this parameter is set to on, database account permissions are traced. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced...