Search for packages
| purl | pkg:generic/postgresql@12.0.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-36gv-m96w-47db
Aliases: CVE-2020-25694 |
Reconnection can downgrade connection security settingsmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-3kph-5gzq-ryhu
Aliases: CVE-2023-2455 |
Row security policies disregard user ID changes after inliningmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-4jdp-3xqp-ufap
Aliases: CVE-2021-32027 |
Buffer overrun from integer overflow in array subscripting calculationsmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-5py6-fe2j-d3f4
Aliases: CVE-2023-2454 |
CREATE SCHEMA ... schema_element defeats protective search_path changesmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-66hr-98m2-a3gc
Aliases: CVE-2024-10977 |
PostgreSQL libpq retains an error message from man-in-the-middlemore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8da2-zhsq-j7c4
Aliases: CVE-2024-10978 |
PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user IDmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8p8h-jdyq-vfek
Aliases: CVE-2021-32028 |
Memory disclosure in INSERT ... ON CONFLICT ... DO UPDATEmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ah54-w11h-eqef
Aliases: CVE-2024-7348 |
PostgreSQL relation replacement during pg_dump executes arbitrary SQLmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-bdw5-v87c-zyfj
Aliases: CVE-2020-25695 |
Multiple features escape "security restricted operation" sandboxmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-brqx-ae92-83ep
Aliases: CVE-2021-3393 |
Partition constraint violation errors leak values of denied columnsmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-cegf-gbkv-aqab
Aliases: CVE-2020-14349 |
Uncontrolled search path element in logical replicationmore details |
Affected by 0 other vulnerabilities. |
|
VCID-dv4x-n7v8-vyfh
Aliases: CVE-2021-32029 |
Memory disclosure in partitioned-table UPDATE ... RETURNINGmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-dwqe-a6p3-tyf6
Aliases: CVE-2023-5869 |
Buffer overrun from integer overflow in array modificationmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-j4cc-p1t3-tydy
Aliases: CVE-2024-0985 |
PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes arbitrary SQLmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-nuek-ypyh-b3dm
Aliases: CVE-2022-2625 |
Extension scripts replace objects not belonging to the extensionmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-nwfr-t7xn-zuae
Aliases: CVE-2023-5870 |
Role "pg_signal_backend" can signal certain superuser processesmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-q5z4-wv12-1fh7
Aliases: CVE-2023-5868 |
Memory disclosure in aggregate function callsmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-q8ka-5dxw-w7fs
Aliases: CVE-2022-1552 |
Autovacuum, REINDEX, and others omit "security restricted operation" sandboxmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-qbd9-mpc6-5bap
Aliases: CVE-2021-23222 |
libpq processes unencrypted bytes from man-in-the-middlemore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-rac3-kfb9-efgf
Aliases: CVE-2024-10976 |
PostgreSQL row security below e.g. subqueries disregards user ID changesmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-srbh-8fdq-bkc2
Aliases: CVE-2021-23214 |
Server processes unencrypted bytes from man-in-the-middlemore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-u751-gq61-fbge
Aliases: CVE-2022-41862 |
Client memory disclosure when connecting, with Kerberos, to modified servermore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-umaz-62cm-bqfe
Aliases: CVE-2020-14350 |
Uncontrolled search path element in CREATE EXTENSIONmore details |
Affected by 0 other vulnerabilities. |
|
VCID-wamn-1as1-qbfa
Aliases: CVE-2020-1720 |
ALTER ... DEPENDS ON EXTENSION is missing authorization checks.more details |
Affected by 0 other vulnerabilities. |
|
VCID-wxxg-2f53-w3ey
Aliases: CVE-2024-10979 |
PostgreSQL PL/Perl environment variable changes execute arbitrary codemore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-xjv3-x91m-qqhn
Aliases: CVE-2020-25696 |
psql's \gset allows overwriting specially treated variablesmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-y871-sfhf-a7by
Aliases: CVE-2023-39417 |
Extension script @substitutions@ within quoting allow SQL injectionmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-yy3k-mszq-cbcs
Aliases: CVE-2021-3677 |
Memory disclosure in certain queriesmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zrcc-w98g-gfhk
Aliases: CVE-2019-3466 |
pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||