13233 matches found
[SECURITY] Fedora 37 Update: pgadmin4-6.19-2.fc37
pgAdmin is the most popular and feature rich Open Source administration and d evelopment platform for PostgreSQL, the most advanced Open Source database in the world...
DLA-3600-1 postgresql-11 - security update
Bulletin has no description...
Fedora 38 : pgadmin4 (2023-8cc61c8b14)
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-8cc61c8b14 advisory. Backport fix for CVE-2023-5002. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Fedora 37 : pgadmin4 (2023-478aa17fa2)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-478aa17fa2 advisory. Backport fix for CVE-2023-5002. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...
Debian: Security Advisory (DLA-3600-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3600-1] postgresql-11 security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-3600-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta October 04, 2023 https://wiki.debian.org/LTS -...
Debian dla-3600 : libecpg-compat3 - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3600 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3600-1 [email protected] https://www.debian.org/lts/security/...
Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities
Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. This update addresses these CVEs. Vulnerability Details CVEID:CVE-2022-21724 DESCRIPTION: PostgreSQL JDBC Driver PgJDBC could allow a remote authenticated attack...
Vulnerability fixed in pgAdmin
A vulnerability has been fixed in pgAdmin. The vulnerability allows an authenticated malicious person to execute arbitrary code execute arbitrary code on the PostgreSQL server. The developers of pgAdmin have released updates to fix the vulnerability in pgAdmin 7.7. For more information, see:...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL11-2023-003)
The version of postgresql installed on the remote host is prior to 11.12-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL11-2023-003 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL11-2023-001)
The version of postgresql installed on the remote host is prior to 11.20-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL11-2023-001 advisory. This enabled an attacker having database-level CREATE privilege to execute arbitrary code as the bootstrap...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL13-2023-004)
The version of postgresql installed on the remote host is prior to 13.11-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL13-2023-004 advisory. IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL12-2023-004)
The version of postgresql installed on the remote host is prior to 12.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL12-2023-004 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL12-2023-005)
The version of postgresql installed on the remote host is prior to 12.15-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL12-2023-005 advisory. IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL14-2023-003)
The version of postgresql installed on the remote host is prior to 14.8-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL14-2023-003 advisory. IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL11-2023-002)
The version of postgresql installed on the remote host is prior to 11.16-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL11-2023-002 advisory. A flaw was found in PostgreSQL. There is an issue with incomplete efforts to operate safely when a privileged user is...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL12-2023-002)
The version of postgresql installed on the remote host is prior to 12.11-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL12-2023-002 advisory. 2024-08-28: CVE-2021-3677 was added to this advisory. 2024-02-29: CVE-2021-23222 was added to this advisory....
Amazon Linux 2 : postgresql (ALASPOSTGRESQL13-2023-003)
The version of postgresql installed on the remote host is prior to 13.3-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL13-2023-003 advisory. A flaw was found in postgresql. While modifying certain SQL array values, missing bounds checks let...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL13-2023-002)
The version of postgresql installed on the remote host is prior to 13.7-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL13-2023-002 advisory. 2024-08-28: CVE-2021-3677 was added to this advisory. 2024-02-29: CVE-2021-23222 was added to this advisory. ...
Amazon Linux 2 : postgresql (ALASPOSTGRESQL11-2023-004)
The version of postgresql installed on the remote host is prior to 11.20-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2POSTGRESQL11-2023-004 advisory. IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or...