29 matches found
EUVD-2019-13104
Malware in sbrugna...
SUSE CVE-2016-1255
The pgctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04...
The vulnerability of the pg_ctlcluster script in the postgresql-common package involves insecure privilege management. This allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the pgctlcluster script in the postgresql-common package is related to an access rights rollback error during the creation of temporary directories for sockets/stats. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrit...
The vulnerability of the pg_ctlcluster script in the postgresql-common package allows a hacker to gain unauthorized access to confidential data, cause service failures, and compromise the integrity of the data.
The vulnerability of the pgctlcluster script in the postgresql-common package relates to an incorrect definition of the reference before accessing the file. Exploiting this vulnerability can allow an attacker to gain unauthorized access to confidential data, cause service failures, and compromise...
USN-4194-2 postgresql-common vulnerability
USN-4194-1 fixed a vulnerability in postgresql-common. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Rich Mirch discovered that the postgresql-common pgctlcluster script incorrectly handled directory creation. A local attacker could possibly use th...
CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
ALPINE-CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
Privilege escalation
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
CVE-2019-3466
CVE-2019-3466 concerns the pg_ctlcluster script in the PostgreSQL-related package postgresql-common. In versions prior to 210, the script did not drop privileges when creating socket/statistics temporary directories, enabling a local privilege escalation. Public disclosures reference Ubuntu/Debia...
CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
Debian DLA-1994-1 : postgresql-common security update
Rich Mirch discovered that the pgctlcluster script didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation. For the oldoldstable distribution jessie, this problem has been fixed in version 165+deb8u4. We recommend that you...
Postgresql-common resource management error vulnerability
PostgreSQL is a free object-relational database management system from the PostgreSQL organization. The system supports most of the SQL standards and provides many other features such as foreign keys, triggers, views, etc. postgresql-common is a generic package for PostgreSQL. A security...
CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
UBUNTU-CVE-2019-3466
The pgctlcluster script in postgresql-common in versions prior to 210 didn't drop privileges when creating socket/statistics temporary directories, which could result in local privilege escalation...
CVE-2016-1255
The pgctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04...
DEBIAN-CVE-2016-1255
The pgctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04...
CVE-2016-1255
The pgctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04...
CVE-2016-1255
The pgctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04...