Security Bulletin: IBM Instana Observability is vulnerable to SQL injection due to PostgreSQL driver and toolkit for Go, known as pgx.

Summary PostgreSQL driver and toolkit for Go, known as pgx is used by IBM Instana Observability Using third-party datastore Operators as part of the postgres operator CVE-2024-27304. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2024-2730...

Security Bulletin: Vulnerabilities in Golang Go and PostgreSQL might affect IBM Storage Copy Data Management

Summary IBM Storage Copy Data Management can be affected by vulnerabilities in Golang Go and PostgreSQL . An attacker or remote attacker could exploit these vulnerabilities to create an zip file with contents that vary depending on the implementation reading the file, to obtain sensitive...

Security Bulletin: Vulnerabilities in Node.js, AngularJS, Golang Go, libcURL, PostgreSQL, Linux kernel might affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in Node.js, AngularJS, Golang Go, libcURL, PostgreSQL, and Linux. Vulnerabilities include obtaining sensitive information, causing denial of service condition, heap-based buffer overflow, bypassing of security restrictions,...

postgresql16-16.4-1.1 on GA media (moderate)

postgresql16-16.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14360-1 Rating: moderate Cross-References: CVE-2020-25694 CVE-2020-25695 CVE-2020-25696 CVE-2021-20229 CVE-2021-23214 CVE-2021-23222 CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 CVE-2021-3393 CVE-2022-1552 CVE-2022-41862...

OPENSUSE-SU-2024:14360-1 postgresql16-16.4-1.1 on GA media

These are all security issues fixed in the postgresql16-16.4-1.1 package on the GA media of openSUSE Tumbleweed...

RHSA-2016:1060 Red Hat Security Advisory: postgresql92-postgresql security update

Bulletin has no description...

RHSA-2016:0349 Red Hat Security Advisory: postgresql92-postgresql security update

Bulletin has no description...

RHSA-2016:0348 Red Hat Security Advisory: rh-postgresql94-postgresql security update

Bulletin has no description...

RHSA-2016:0347 Red Hat Security Advisory: postgresql security update

Bulletin has no description...

RHSA-2016:0346 Red Hat Security Advisory: postgresql security update

Bulletin has no description...

PostgreSQL: Privilege Escalation

Background PostgreSQL is an open source object-relational database management system. Description A vulnerability has been discovered in PostgreSQL. Please review the CVE identifier referenced below for details. Impact An attacker able to create and drop non-temporary objects could inject SQL cod...

GLSA-202409-02 : PostgreSQL: Privilege Escalation

The remote host is affected by the vulnerability described in GLSA-202409-02 PostgreSQL: Privilege Escalation A vulnerability has been discovered in PostgreSQL. Please review the CVE identifier referenced below for details. Tenable has extracted the preceding description block directly from the...

postgresql14-14.13-1.1 on GA media (moderate)

postgresql14-14.13-1.1 on GA media Announcement ID: openSUSE-SU-2024:14350-1 Rating: moderate Cross-References: CVE-2024-7348 CVSS scores: CVE-2024-7348 SUSE : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-7348 SUSE : 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

postgresql12-12.20-1.1 on GA media (moderate)

postgresql12-12.20-1.1 on GA media Announcement ID: openSUSE-SU-2024:14348-1 Rating: moderate Cross-References: CVE-2024-7348 CVSS scores: CVE-2024-7348 SUSE : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-7348 SUSE : 7.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...

Ubuntu: Security Advisory (USN-6968-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6968-2: PostgreSQL vulnerability

USN-6968-1 fixed CVE-2024-7348 in PostgreSQL-12, PostgreSQL-14, and PostgreSQL-16 This update provides the corresponding updates for PostgreSQL-9.5 in Ubuntu 16.04 LTS. Original advisory details: Noah Misch discovered that PostgreSQL incorrectly handled certain SQL objects. An attacker could...

USN-6968-2 postgresql-9.5 vulnerability

USN-6968-1 fixed CVE-2024-7348 in PostgreSQL-12, PostgreSQL-14, and PostgreSQL-16 This update provides the corresponding updates for PostgreSQL-9.5 in Ubuntu 16.04 LTS. Original advisory details: Noah Misch discovered that PostgreSQL incorrectly handled certain SQL objects. An attacker could...

OPENSUSE-SU-2024:14350-1 postgresql14-14.13-1.1 on GA media

These are all security issues fixed in the postgresql14-14.13-1.1 package on the GA media of openSUSE Tumbleweed...

Ubuntu 16.04 LTS : PostgreSQL vulnerability (USN-6968-2)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6968-2 advisory. USN-6968-1 fixed CVE-2024-7348 in PostgreSQL-12, PostgreSQL-14, and PostgreSQL-16 This update provides the corresponding updates for PostgreSQL-9.5 in Ubuntu 16.0...

OPENSUSE-SU-2024:14351-1 postgresql15-15.8-1.1 on GA media

These are all security issues fixed in the postgresql15-15.8-1.1 package on the GA media of openSUSE Tumbleweed...