Synopsis
Moderate: postgresql:10 security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for the postgresql:10 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated thi ...
Several security issues were fixed in PostgreSQL ...
Jacob Champion discovered two vulnerabilities in the PostgreSQL database
system, which could result in man-in-the-middle attacks
For the oldstable distribution (buster), these problems have been fixed
in version 1114-0+deb10u1
We recommend that you upgrade your postgresql-11 packages
For the detailed security status of postgresql-11 please refe ...
Jacob Champion discovered two vulnerabilities in the PostgreSQL database
system, which could result in man-in-the-middle attacks
For the stable distribution (bullseye), these problems have been fixed in
version 135-0+deb11u1
We recommend that you upgrade your postgresql-13 packages
For the detailed security status of postgresql-13 please refer ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
A security issue has been found in PostgreSQL versions 96 up to 14 When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encrypti ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption (CVE-2021-23214) ...
Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer contain the following vulnerability:
CVE-2021-42550
Hitachi Ops Center Analyzer viewpoint and Hitachi Ops Center Viewpoint contain the following vulnerabilities:
CVE-2021-23214, CVE-2021-23222, CVE-2021-39226, CVE-2021-42550, CVE-2021-43813
Affected products and vers ...
A man-in-the-middle attacker can inject false responses to the client's first few queries, despite the use of SSL certificate verification and encryption ...
When the server is configured to use trust authentication with a clientcert requirement or to use cert authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate verification and encryption This is similar to CVE-2011-0411 (different product) ...