Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : postgresql-13.13-1.el9_3 (AXSA:2023-7047:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7047:07 advisory. postgresql: Buffer overrun from integer overflow in array modification CVE-2023-5869 postgresql: Memory disclosure in aggregate function calls...

8.8CVSS8.2AI score0.04322EPSS
Exploits0References5
Broadcom
Broadcom
added 2025/02/13 12:0 a.m.6 views

PostgreSQL Vulnerable to Denial-of-Service (DoS) in 'pg_signal_backend()'

PostgreSQL contains a denial-of-service DoS vulnerability. An attacker with superuser permissions could exploit this issue to cause the database to crash...

4.4CVSS6.8AI score0.02555EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/11/23 8:0 a.m.4 views

Postgresql: role pg_signal_backend can signal certain superuser processes.

...

4.4CVSS6.3AI score0.02555EPSS
Exploits0
Cloud Foundry
Cloud Foundry
added 2024/03/18 12:0 a.m.33 views

USN-6538-1: PostgreSQL vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description Jingzhou Fu discovered that PostgreSQL incorrectly handled certain unknown arguments in aggregate function calls. A remote attacker could possibly use this issue to obtain sensitive information...

8.8CVSS8.1AI score0.04322EPSS
Exploits0Affected Software2
OSV
OSV
added 2024/02/13 11:13 a.m.6 views

CLSA-2024-1707822783 Fix CVE(s): CVE-2023-5868, CVE-2023-5870

SECURITY UPDATE: Memory disclosure in aggregate function calls - debian/patches/CVE-2023-5868.patch: Compute aggregate argument types correctly in transformAggregateCall. - CVE-2023-5868 SECURITY UPDATE: Role "pgsignalbackend" can signal certain superuser processes -...

4.4CVSS6.7AI score0.02775EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/12/20 9:45 a.m.7 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/13 3:36 p.m.2 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/13 3:36 p.m.3 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/13 8:6 a.m.1 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/12/11 9:59 a.m.3 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/11/30 3:2 p.m.2 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/11/29 2:18 p.m.2 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/11/29 2:13 p.m.2 views

postgresql: Role pg_signal_backend can signal certain superuser processes.

A flaw was found in PostgreSQL involving the pgcancelbackend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. Successful exploitation requires a non-core extension with a less-resilient background worker and would...

4.4CVSS7.4AI score0.02555EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/11/16 12:0 a.m.7 views

The vulnerability of the PostgreSQL database management system lies in the ability to send signals to user processes through the role of pg_signal_backend. This allows a malicious actor to cause a service failure for a specific background process.

The vulnerability of the PostgreSQL database management system relates to the ability to send signals to user processes through the role of pgsignalbackend. Exploiting this vulnerability allows a malicious actor to cause a service failure for a specific background process...

2.2CVSS6.4AI score0.02555EPSS
Exploits0References16Affected Software11
Positive Technologies
Positive Technologies
added 2023/11/08 12:0 a.m.3 views

PT-2023-6889 · Unknown +11 · Postgresql +10

Name of the Vulnerable Software and Affected Versions: PostgreSQL affected versions not specified Description: The issue is related to the pg signal backend role in PostgreSQL, which allows signaling certain superuser processes. This can be exploited by a remote high-privileged user to launch a...

8.8CVSS6AI score0.04322EPSS
Exploits1References234
Rows per page
Query Builder