[SECURITY] [DLA-1169-1] postgresql-common security update

Package : postgresql-common Version : 134wheezy6 A security vulnerability has been found in postgresql-common, Debians PostgreSQL database cluster management tools. CVE-2017-8806 It was discovered that the pgctlcluster, pgcreatecluster and pgupgradecluster commands handled symbolic links insecure...

DLA-1169-1 postgresql-common - security update

Bulletin has no description...

Debian DSA-4029-1 : postgresql-common - security update

It was discovered that the pgctlcluster, pgcreatecluster and pgupgradecluster commands handled symbolic links insecurely which could result in local denial of service by overwriting arbitrary files. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in th...

Multiple products postgresql-common package elevation of privilege vulnerability

Debian is a free operating system created by the Debian Project Collaboration with Linux or FreeBSD as its kernel. wheezy, jessie, and unstable are all offshoots of Debian. ubuntu is a suite of desktop application-oriented GNU/Linux operating systems developed by Canonical and the Ubuntu...

Ubuntu: Security Advisory (USN-3476-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 14.04 LTS / 16.04 LTS : postgresql-common vulnerabilities (USN-3476-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3476-1 advisory. Dawid Golunski discovered that the postgresql-common pgctlcluster script incorrectly handled symlinks. A local attacker could possibly use th...

USN-3476-1 postgresql-common vulnerabilities

Dawid Golunski discovered that the postgresql-common pgctlcluster script incorrectly handled symlinks. A local attacker could possibly use this issue to escalate privileges. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-1255 It was discovered that the postgresql-common...

USN-3476-1: postgresql-common vulnerabilities

Dawid Golunski discovered that the postgresql-common pgctlcluster script incorrectly handled symlinks. A local attacker could possibly use this issue to escalate privileges. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS. CVE-2016-1255 It was discovered that the postgresql-common...

UBUNTU-CVE-2017-8806

The Debian pgctlcluster, pgcreatecluster, and pgupgradecluster scripts, as distributed in the Debian postgresql-common package before 181+deb9u1 for PostgreSQL and other packages related to Debian and Ubuntu, handled symbolic links insecurely, which could result in local denial of service by...

PT-2017-3927 · Postgresql +1 · Postgresql-Common +1

Name of the Vulnerable Software and Affected Versions: postgresql-common versions prior to 181+deb9u1 Description: The issue is related to the incorrect handling of symbolic links by the pg ctlcluster, pg createcluster, and pg upgradecluster scripts in the postgresql-common package for PostgreSQL...

Debian: Security Advisory (DSA-4029-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA-774-1] postgresql-common security update

Package : postgresql-common Version : 134wheezy5 A security vulnerability and a data loss bug have been found in postgresql-common, Debians PostgreSQL database cluster management tools. CVE-2016-1255 Dawid Golunski discovered that a symlink in /var/log/postgresql/ could be used by the "postgres"...

DLA-774-1 postgresql-common - security update

Bulletin has no description...