Search for packages
| purl | pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1 |
| Next non-vulnerable version | 9.4.18-0+deb8u1 |
| Latest non-vulnerable version | 9.4.18-0+deb8u1 |
| Risk | 4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-3qrq-rc38-13ep
Aliases: CVE-2017-7546 |
empty password accepted in some authentication methodsmore details |
Affected by 0 other vulnerabilities. |
|
VCID-45vk-2xsq-cffk
Aliases: CVE-2017-7485 |
libpq ignores PGREQUIRESSL environment variablemore details |
Affected by 0 other vulnerabilities. |
|
VCID-723y-bsbd-6kfd
Aliases: CVE-2017-7484 |
selectivity estimators bypass SELECT privilege checksmore details |
Affected by 0 other vulnerabilities. |
|
VCID-csfh-831q-rqfv
Aliases: CVE-2017-7547 |
pg_user_mappings view discloses passwords to users lacking server privilegesmore details |
Affected by 0 other vulnerabilities. |
|
VCID-d362-bmcf-3kdz
Aliases: CVE-2017-15098 |
Memory disclosure in JSON functionsmore details |
Affected by 0 other vulnerabilities. |
|
VCID-qn5k-y64c-7ffc
Aliases: CVE-2017-7486 |
pg_user_mappings view discloses foreign server passwordsmore details |
Affected by 0 other vulnerabilities. |
|
VCID-um7d-pzhb-n3c9
Aliases: CVE-2017-7548 |
lo_put() function ignores ACLsmore details |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-8bu8-zpfv-8bgg | Exceptional database and role names could enable escalation to superusermore details |
CVE-2016-5424
|
| VCID-9b6v-1bt1-dfgy | Certain nested CASE/WHEN expressions can crash servermore details |
CVE-2016-5423
|