4 matches found
Use of Inherently Dangerous Function
Overview Affected versions of this package are vulnerable to Use of Inherently Dangerous Function via the PQfn function when called with resultisint=0 in the loexport, loread, lolseek64, and lotell64 functions. An attacker can overwrite client stack memory with arbitrary data by sending a special...
CVE-2025-24288
Versa Director (Versa Networks) is affected by CVE-2025-24288. Public details describe multiple issues including exposure of services by default with default credentials (several accounts with sudo) and internet exposure of SSH and PostgreSQL. The root cause centers on weak handling of default cr...
OESA-2023-1578 postgresql security update
PostgreSQL is an advanced Object-Relational database management system DBMS that supports almost all SQL constructs including transactions, subselects and user-defined types and functions. The postgresql package includes the client programs and libraries that you'll need to access a PostgreSQL DB...
openSUSE Security Update : postgresql / postgresql-libs (openSUSE-SU-2012:1251-1)
Security and bugfix release 9.1.5 : - Ignore SECURITY DEFINER and SET attributes for a procedural language's call handler CVE-2012-2655 bnc765069 - Fix incorrect password transformation in 'contrib/pgcrypto''s DES crypt function CVE-2012-2143 bnc766799 - Prevent access to external files/URLs via...