Several security issues were fixed in PostgreSQL ...
A issue has been discovered in the PostgreSQL database system, which
could result in privilege escalation
For additional information please refer to the upstream announcement at
wwwpostgresqlorg/about/news/1960/
For the oldstable distribution (stretch), these problems have been fixed
in version 9615-0+deb9u1
We recommend that you upgr ...
Two security issues have been discovered in the PostgreSQL database
system, which could result in privilege escalation, denial of service or
memory disclosure
For additional information please refer to the upstream announcement at
wwwpostgresqlorg/about/news/1960/
For the stable distribution (buster), these problems have been fixed in
ve ...
Synopsis
Important: postgresql:96 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:96 module is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Com ...
Synopsis
Important: postgresql:10 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 81 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Moderate: postgresql:10 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability S ...
Synopsis
Important: postgresql:96 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:96 module is now available for Red Hat Enterprise Linux 81 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Com ...
Synopsis
Moderate: rh-postgresql96-postgresql security update
Type/Severity
Security Advisory: Moderate
Topic
An update for rh-postgresql96-postgresql is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerabil ...
Synopsis
Important: postgresql:10 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Importan ...
Synopsis
Important: postgresql:96 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:96 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: postgresql:96 security update
Type/Severity
Security Advisory: Important
Topic
An update for the postgresql:96 module is now available for Red Hat Enterprise Linux 80 Update Services for SAP SolutionsRed Hat Product Security has rated this update as having a security impact of Import ...
A flaw was discovered in postgresql where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function An attacker, with EXECUTE permission on the function, can execute arbitrary SQL as the owner of the function (CVE-2019-10208)
A flaw was found in postgresql If a client application that creates additional database connect ...
A security issue has been found in PostgreSQL < 115 where given a suitable SECURITY DEFINER function, an attacker can execute arbitrary SQL under the identity of the function owner An attack requires EXECUTE permission on the function, which must itself contain a function call having inexact argument type match For example, length('foo'::varc ...
A flaw was discovered in postgresql where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function An attacker, with EXECUTE permission on the function, can execute arbitrary SQL as the owner of the function (CVE-2019-10208) ...
A flaw was discovered in postgresql where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function An attacker, with EXECUTE permission on the function, can execute arbitrary SQL as the owner of the function (CVE-2019-10208)
A flaw was found in postgresql If a client application that creates additional database connect ...
PostgreSQL maintains column statistics for tables Certain statistics, such as histograms and lists of most common values, contain values taken from the column PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit this to read the most common values of certain columns ...
PostgreSQL maintains column statistics for tables Certain statistics, such as histograms and lists of most common values, contain values taken from the column PostgreSQL does not evaluate row security policies before consulting those statistics during query planning; an attacker can exploit this to read the most common values of certain columns ...
Given a suitable SECURITY DEFINER function, an attacker can execute arbitrary SQL under the identity of the function owner An attack requires EXECUTE permission on the function, which must itself contain a function call having inexact argument type match For example, length('foo'::varchar) and length('foo') are inexact, while length('foo'::text ...