SUSE CVE-2007-3279

PostgreSQL 8.1 and probably later versions, when the PL/pgSQL plpgsql language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions, as demonstrated by functions that perform local brute-force password guessing...

Ubuntu: Security Advisory (USN-369-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-369-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-288-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-834-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-417-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for postgresql-8.1 regression USN-417-3

Ubuntu Update for Linux kernel vulnerabilities USN-417-3 OpenVAS Vulnerability Test $Id: gbubuntuUSN4173.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for postgresql-8.1 regression USN-417-3 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu Update for postgresql-7.4/-8.0/-8.1 vulnerabilities USN-417-1

Ubuntu Update for Linux kernel vulnerabilities USN-417-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4171.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for postgresql-7.4/-8.0/-8.1 vulnerabilities USN-417-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Debian DSA-1460-1 : postgresql-8.1 - several vulnerabilities

Several local vulnerabilities have been discovered in PostgreSQL, an object-relational SQL database. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3278 It was discovered that the DBLink module performed insufficient credential validation. This iss...

DSA-1460-1 postgresql-8.1 - several

Bulletin has no description...

Ubuntu 6.06 LTS / 6.10 : postgresql-8.1 regression (USN-417-2)

USN-417-1 fixed several vulnerabilities in the PostgreSQL server. Unfortunately this update had a regression that caused some valid queries to be aborted with a type error. This update corrects that problem. We apologize for the inconvenience. Note that Tenable Network Security has extracted the...

Ubuntu 6.06 LTS : postgresql-8.1 vulnerabilities (USN-369-1)

Michael Fuhr discovered an incorrect type check when handling unknown literals. By attempting to coerce such a literal to the ANYARRAY type, a local authenticated attacker could cause a server crash. Josh Drake and Alvaro Herrera reported a crash when using aggregate functions in UPDATE statement...

Ubuntu 6.10 : postgresql-8.1 vulnerabilities (USN-369-2)

USN-369-1 fixed three minor PostgreSQL 8.1 vulnerabilities for Ubuntu 6.06 LTS. This update provides the corresponding update for Ubuntu 6.10. Michael Fuhr discovered an incorrect type check when handling unknown literals. By attempting to coerce such a literal to the ANYARRAY type, a local...

CVE-2007-3280

The Database Link library dblink in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a function from any library, as demonstrated by using the system...

Debian DSA-1309-1 : postgresql-8.1 - programming error

It was discovered that the PostgreSQL database performs insufficient validation of variables passed to privileged SQL statements, so called'security definers', which could lead to SQL privilege escalation. The oldstable distribution sarge doesn't contain PostgreSQL 8.1. %NASLMINLEVEL 70300 C...

security flaw

backend/parser/analyze.c in PostgreSQL 8.1.x before 8.1.5 allows remote authenticated users to cause a denial of service daemon crash via certain aggregate functions in an UPDATE statement, which are not properly handled during a "MIN/MAX index optimization."...

USN-369-2: postgresql-8.1 vulnerabilities

USN-369-1 fixed three minor PostgreSQL 8.1 vulnerabilities for Ubuntu 6.06 LTS. This update provides the corresponding update for Ubuntu 6.10. Original advisory details: Michael Fuhr discovered an incorrect type check when handling unknown literals. By attempting to coerce such a literal to the...