RHSA-2016:1060 Red Hat Security Advisory: postgresql92-postgresql security update

Bulletin has no description...

RHSA-2016:0349 Red Hat Security Advisory: postgresql92-postgresql security update

Bulletin has no description...

Amazon Linux AMI : postgresql92 (ALAS-2023-1759)

The version of postgresql92 installed on the remote host is prior to 9.2.24-3.69. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1759 advisory. This enabled an attacker having database-level CREATE privilege to execute arbitrary code as the bootstrap superuser...

Important: postgresql92

Issue Overview: This enabled an attacker having database-level CREATE privilege to execute arbitrary code as the bootstrap superuser. Database owners have that right by default, and explicit grants may extend it to other users. CVE-2023-2454 Affected Packages: postgresql92 Issue Correction: Run y...

Amazon Linux AMI : postgresql92 (ALAS-2023-1657)

The version of postgresql92 installed on the remote host is prior to 9.2.24-3.68. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1657 advisory. When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a...

Medium: postgresql92

Issue Overview: When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and...

Amazon Linux AMI : postgresql92 (ALAS-2021-1519)

The version of postgresql92 installed on the remote host is prior to 9.2.24-3.67. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1519 advisory. A flaw was discovered in postgresql where arbitrary SQL statements can be executed given a suitable SECURITY DEFIN...

Amazon Linux AMI : postgresql92 (ALAS-2018-1080)

A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with 'host' or 'hostaddr' connection parameters from untrusted input, attackers could bypass client-side...

Important: postgresql92

Issue Overview: A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could...

Amazon Linux AMI : postgresql92 (ALAS-2017-838)

Selectivity estimators bypass SELECT privilege checks It was found that some selectivity estimation functions did not check user privileges before providing information from pgstatistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tabl...

Medium: postgresql92

Issue Overview: Selectivity estimators bypass SELECT privilege checks It was found that some selectivity estimation functions did not check user privileges before providing information from pgstatistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some...

RHEL 6 : postgresql92 in Satellite Server (RHSA-2016:1060)

An update for postgresql92-postgresql is now available for Red Hat Satellite 5.7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Amazon Linux: Security Advisory (ALAS-2016-662)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : postgresql92 (openSUSE-2015-708)

postgresql92 was updated to version 9.2.14 to fix one security issue. This security issue was fixed : - CVE-2015-5288: The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allowed attackers to cau...

Amazon Linux: Security Advisory (ALAS-2015-492)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : postgresql92 (ALAS-2015-545)

Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service crash by closing an SSL session at a time when the authentication timeout will expire during the session...

Amazon Linux AMI : postgresql92 (ALAS-2015-492)

A buffer overflow flaw was found in the way PostgreSQL handled certain numeric formatting. An authenticated database user could use a specially crafted timestamp formatting template to cause PostgreSQL to crash or, under certain conditions, execute arbitrary code with the permissions of the user...

openSUSE Security Update : postgresql92 (openSUSE-SU-2013:0628-1)

postgresql was updated to version 9.2.4 bnc812525 : - CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with '-' could be crafted to damage or destroy files within the server's data directory, even if the request is...

CentOS 6 : postgresql92-postgresql (CESA-2014:0221)

The remote CentOS host is missing a security update which has been documented in Red Hat advisory RHSA-2014:0221. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Red Hat Security Advisory RHSA-2014:0221 and CentOS...

SuSE Update for postgresql92 openSUSE-SU-2013:0628-1 (postgresql92)

Check for the Version of postgresql92 OpenVAS Vulnerability Test $Id: gbsuse201306281.nasl 8045 2017-12-08 08:39:37Z santu $ SuSE Update for postgresql92 openSUSE-SU-2013:0628-1 postgresql92 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH,...