Several security issues were fixed in PostgreSQL ...
Two vulnerabilities have been found in the PostgreSQL database system:
CVE-2018-10915
Andrew Krasichkov discovered that libpq did not reset all its
connection state during reconnects
CVE-2018-10925
It was discovered that some CREATE TABLE statements could
disclose server memory
For additional information please refer to the upst ...
Synopsis
Important: rh-postgresql10-postgresql security update
Type/Severity
Security Advisory: Important
Topic
An update for rh-postgresql10-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnera ...
Synopsis
Important: rh-postgresql96-postgresql security update
Type/Severity
Security Advisory: Important
Topic
An update for rh-postgresql96-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnera ...
Synopsis
Important: rh-postgresql95-postgresql security update
Type/Severity
Security Advisory: Important
Topic
An update for rh-postgresql95-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnera ...
Synopsis
Important: CloudForms 466 security, bug fix and enhancement update
Type/Severity
Security Advisory: Important
Topic
An update is now available for CloudForms Management Engine 59Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scori ...
It was discovered that PostgreSQL failed to properly check authorization on certain statements involved with "INSERT ON CONFLICT DO UPDATE" An attacker with "CREATE TABLE" privileges could exploit this to read arbitrary bytes server memory If the attacker also had certain "INSERT" and limited "UPDATE" privileges to a particular table, they co ...
A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side connection security features, obtain access to highe ...
A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side connection security features, obtain access to highe ...
A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side connection security features, obtain access to highe ...
A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections If an affected version of libpq were used with "host" or "hostaddr" connection parameters from untrusted input, attackers could bypass client-side connection security features, obtain access to highe ...
For more information about PostgreSQL versioning,
please visit the versioning page ...