Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:5 a.m.1 views

SUSE CVE-2016-3065

The 1 brinpagetype and 2 brinmetapageinfo functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service server crash via a crafted byte...

9.1CVSS6.7AI score0.03347EPSS
Exploits0References3
OSV
OSV
added 2016/04/13 5:39 p.m.10 views

MGASA-2016-0136 Updated postgresql packages fix security vulnerabilities

Updated postgresql packages fix security vulnerabilities: A vulnerability in PostgreSQL 9.3.x before 9.3.12 and 9.4.x before 9.4.7 leads to potentially incorrect policies being applied in cases where role-specific policies are used and a given query is planned under one role and then executed und...

9.1CVSS5.7AI score0.03347EPSS
Exploits0References5
Mageia
Mageia
added 2016/04/13 5:39 p.m.45 views

Updated postgresql packages fix security vulnerabilities

Updated postgresql packages fix security vulnerabilities: A vulnerability in PostgreSQL 9.3.x before 9.3.12 and 9.4.x before 9.4.7 leads to potentially incorrect policies being applied in cases where role-specific policies are used and a given query is planned under one role and then executed und...

9.1CVSS1AI score0.03347EPSS
Exploits0References4
CNVD
CNVD
added 2016/04/12 12:0 a.m.4 views

PostgreSQL pageinspect extension security bypass vulnerability

PostgreSQL is a free object-relational database management system developed by the PostgreSQL development group. The system supports most of the SQL standards and provides many other features, such as foreign keys, triggers, views, and so on. A security vulnerability exists in the 'brinpagetype'...

9.1CVSS9.4AI score0.03347EPSS
Exploits0References1
NVD
NVD
added 2016/04/11 3:59 p.m.20 views

CVE-2016-3065

The 1 brinpagetype and 2 brinmetapageinfo functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service server crash via a crafted byte...

9.1CVSS8.9AI score0.03347EPSS
Exploits0References4
Prion
Prion
added 2016/04/11 3:59 p.m.17 views

Information disclosure

The 1 brinpagetype and 2 brinmetapageinfo functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service server crash via a crafted byte...

8.5CVSS6.8AI score0.03347EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2016/04/11 3:0 p.m.32 views

CVE-2016-3065

The 1 brinpagetype and 2 brinmetapageinfo functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service server crash via a crafted byte...

8.9AI score0.03347EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/04/08 12:0 a.m.32 views

PostgreSQL 9.5.x < 9.5.2 Multiple Vulnerabilities

The version of PostgreSQL installed on the remote host is 9.5.x prior to 9.5.2. It is, therefore, affected by multiple vulnerabilities : - A flaw exists that is triggered when a query plan is incorrectly reused for more than one ROLE within the same session. An authenticated, remote attacker can...

9.1CVSS7.4AI score0.03347EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/04/01 12:0 a.m.27 views

FreeBSD : PostgreSQL -- minor security problems. (97a24d2e-f74c-11e5-8458-6cc21735f730)

PostgreSQL project reports : Security Fixes for RLS, BRIN This release closes security hole CVE-2016-2193 https://access.redhat.com/security/cve/CVE-2016-2193, where a query plan might get reused for more than one ROLE in the same session. This could cause the wrong set of Row Level Security RLS...

9.1CVSS7.4AI score0.03347EPSS
Exploits0References3
PostrgeSql
PostrgeSql
added 2016/03/31 12:0 a.m.606 views

Vulnerability in contrib module (CVE-2016-3065)

pageinspect does not check permissions for BRIN indexes...

9.1CVSS9.2AI score0.03347EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder