OESA-2022-1557 cyrus-sasl security update

The package contains the Cyrus implementation of SASL. SASL is the Simple Authentication and Security Layer, a method for adding authentication support to connection-based protocols. Security Fixes: In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for ...

AZL-8794 CVE-2022-24407 affecting package cyrus-sasl for versions less than 2.1.28-1

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement...

MariaDB Denial of Service Vulnerability (CNVD-2022-65010)

MariaDB is a free and open source database management system from the MariaDB Foundation and a forked version of MySQL with the Maria storage engine. MariaDB suffers from a denial-of-service vulnerability that stems from the product allowing self-queries to be nested by nesting them within Update...

MariaDB 代码问题漏洞

MariaDB is a free and open source database management system from the MariaDB Foundation and a forked version of MySQL with the Maria storage engine. MariaDB suffers from a denial-of-service vulnerability that stems from the product allowing self-queries to be nested by nesting them within Update...

Information Disclosure

postgresql is vulnerable to information disclosure. An attacker can read arbitrary bytes of server memory using the UPDATE ... RETURNING statements on a purpose-crafted partitioned table...

Code injection

SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200, allow a low privileged attacker to inject code using a remote enabled function module over the network. Via the function module an attacker can create a malicious ABAP report which...

CVE-2021-21466

SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200, allow a low privileged attacker to inject code using a remote enabled function module over the network. Via the function module an attacker can create a malicious ABAP report which...

Actian Matrix Access Restriction Bypass Vulnerability

Actian Matrix is a set of tools for analyzing and processing big data in the MPP database. A security vulnerability exists in Actian Matrix. A remote attacker can exploit the vulnerability to bypass write access restrictions and execute UPDATE statements...

MariaDB Server 5.5.x < 5.5.36 Remote Multiple Denial of Service Vulnerabilities

Binary data 8132.prm...

Ubuntu 6.06 LTS : postgresql-8.1 vulnerabilities (USN-369-1)

Michael Fuhr discovered an incorrect type check when handling unknown literals. By attempting to coerce such a literal to the ANYARRAY type, a local authenticated attacker could cause a server crash. Josh Drake and Alvaro Herrera reported a crash when using aggregate functions in UPDATE statement...