Design/Logic Flaw

PostgreSQL PL/Java before 1.5.0 allows remote authenticated users to alter type mappings for types they do not own...

CVE-2016-2192

PostgreSQL PL/Java before 1.5.0 allows remote authenticated users to alter type mappings for types they do not own...

CVE-2016-0767

PostgreSQL PL/Java before 1.5.0 allows remote authenticated users with USAGE permission on the public schema to alter the public schema classpath...

CVE-2016-0767

CVE-2016-0767 affects PostgreSQL PL/Java prior to 1.5.0. The issue arises from improper privilege management: remote authenticated users with USAGE on the public schema can alter the public schema classpath, enabling potential code execution or modification through Java procedures. Connection to ...

CVE-2016-0768

CVE-2016-0768 affects PostgreSQL PL/Java (9.0 and earlier); the issue is that access controls on large objects are not honored, potentially enabling access to arbitrary objects. The connected CNVD/OSV/NVD entries corroborate this vulnerability and describe it as a PostgreSQL PL/Java failure to en...

CVE-2016-2192

PostgreSQL PL/Java before 1.5.0 allows remote authenticated users to alter type mappings for types they do not own...

CVE-2016-0768

PostgreSQL PL/Java after 9.0 does not honor access controls on large objects...

CVE-2016-2192

CVE-2016-2192 affects PostgreSQL PL/Java. Before 1.5.0, remote authenticated users could alter type mappings for types they do not own due to improper permission checks. Publicly documented impact is limited to changing mappings, with the vulnerability in PL/Java versions up to 1.4.x (pre-1.5.0)....

PostgreSQL Multiple Vulnerabilities (Mar 2015) - Linux

PostgreSQL is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:postgresql:postgresql";...

SUSE SLED11 / SLES11 Security Update : postgresql94 (SUSE-SU-2016:0677-1)

This update for postgresql94 fixes the following issues : - Security and bugfix release 9.4.6 : - IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. - Fix infinite loops and buffer-overrun...

SUSE-SU-2016:0677-1 Security update for postgresql94

This update for postgresql94 fixes the following issues: - Security and bugfix release 9.4.6: IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. Fix infinite loops and buffer-overrun proble...

openSUSE Security Update : postgresql94 (openSUSE-2016-271)

This update for postgresql94 fixes the following issues : - Security and bugfix release 9.4.6 : - IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. - Fix infinite loops and buffer-overrun...

Security update for postgresql94 (important)

This update for postgresql94 fixes the following issues: - Security and bugfix release 9.4.6: IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. Fix infinite loops and buffer-overrun proble...

SUSE-SU-2016:0555-1 Security update for postgresql94

This update for postgresql94 fixes the following issues: - Security and bugfix release 9.4.6: IMPORTANT Users of version 9.4 will need to reindex any jsonbpathops indexes they have created, in order to fix a persistent issue with missing index entries. Fix infinite loops and buffer-overrun proble...

openSUSE Security Update : postgresql93 (openSUSE-2016-253)

This update for postgresql93 fixes the following issues : - Security and bugfix release 9.3.11 : - Fix infinite loops and buffer-overrun problems in regular expressions CVE-2016-0773, boo966436. - Fix regular-expression compiler to handle loops of constraint arcs CVE-2007-4772. - Prevent certain...

SUSE SLED12 / SLES12 Security Update : postgresql93 (SUSE-SU-2016:0539-1)

This update for postgresql93 fixes the following issues : - Security and bugfix release 9.3.11 : - Fix infinite loops and buffer-overrun problems in regular expressions CVE-2016-0773, bsc966436. - Fix regular-expression compiler to handle loops of constraint arcs CVE-2007-4772. - Prevent certain...

SUSE-SU-2016:0539-1 Security update for postgresql93

This update for postgresql93 fixes the following issues: - Security and bugfix release 9.3.11: Fix infinite loops and buffer-overrun problems in regular expressions CVE-2016-0773, bsc966436. Fix regular-expression compiler to handle loops of constraint arcs CVE-2007-4772. Prevent certain PL/Java...

Security update for postgresql93 (important)

This update for postgresql93 fixes the following issues: - Security and bugfix release 9.3.11: Fix infinite loops and buffer-overrun problems in regular expressions CVE-2016-0773, boo966436. Fix regular-expression compiler to handle loops of constraint arcs CVE-2007-4772. Prevent certain PL/Java...

PostgreSQL Elevation of Privilege Vulnerability

PostgreSQL is an advanced object-relational database management system that supports an extended subset of SQL standards. A security vulnerability exists in PostgreSQL, which can be exploited by remote attackers to gain elevated privileges due to the failure of some versions to properly restrict...

CVE-2016-0766

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings GUCS for PL/Java, which allows attackers to gain privileges via unspecified vectors...