VulnerableCode Package Details - pkg:deb/debian/postgresql-common@181%2Bdeb9u1~bpo8%2B1

Search for packages

Vulnerability	Summary	Fixed by
VCID-8h1b-5k7b-qucd Aliases: CVE-2017-8806	security update	181+deb9u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 200+deb10u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-zrcc-w98g-gfhk Aliases: CVE-2019-3466	pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details	181+deb9u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 200+deb10u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 225+deb11u1 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-8h1b-5k7b-qucd
Aliases:
CVE-2017-8806

security update

181+deb9u3
Affected by 2 other vulnerabilities.

200+deb10u5
Affected by 1 other vulnerability.

VCID-zrcc-w98g-gfhk
Aliases:
CVE-2019-3466

pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details

181+deb9u3
Affected by 2 other vulnerabilities.

200+deb10u5
Affected by 1 other vulnerability.

225+deb11u1
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-7ysn-hjyz-nbdj	The pg_ctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04 before 179ubuntu0.1, and in Ubuntu 17.10 before 184ubuntu1.1 allows local users to gain root privileges via a symlink attack on a logfile in /var/log/postgresql.	CVE-2016-1255

Vulnerability

Summary

Aliases

VCID-7ysn-hjyz-nbdj

The pg_ctlcluster script in postgresql-common package in Debian wheezy before 134wheezy5, in Debian jessie before 165+deb8u2, in Debian unstable before 178, in Ubuntu 12.04 LTS before 129ubuntu1.2, in Ubuntu 14.04 LTS before 154ubuntu1.1, in Ubuntu 16.04 LTS before 173ubuntu0.1, in Ubuntu 17.04 before 179ubuntu0.1, and in Ubuntu 17.10 before 184ubuntu1.1 allows local users to gain root privileges via a symlink attack on a logfile in /var/log/postgresql.

CVE-2016-1255

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T23:11:00.512993+00:00	Debian Oval Importer	Fixing	VCID-7ysn-hjyz-nbdj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:16:40.764226+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:16:27.231042+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:02:00.299571+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:35:25.104442+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-15T14:25:27.601282+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.4.0
2026-04-11T22:46:57.214970+00:00	Debian Oval Importer	Fixing	VCID-7ysn-hjyz-nbdj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:54:15.622132+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:02:59.291256+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T14:50:18.414448+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:23:41.932720+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-11T14:13:47.840397+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.3.0
2026-04-08T22:21:41.614356+00:00	Debian Oval Importer	Fixing	VCID-7ysn-hjyz-nbdj	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:31:38.380044+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:52:21.949503+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-07T23:22:56.908321+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T22:57:14.808464+00:00	Debian Oval Importer	Affected by	VCID-8h1b-5k7b-qucd	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0
2026-04-07T22:47:39.941060+00:00	Debian Oval Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	38.1.0