Search for packages
| purl | pkg:generic/postgresql@9.1.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1qap-rdxz-4uer
Aliases: CVE-2015-3167 |
pgcrypto has multiple error messages for decryption with an incorrect key.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-2nve-471m-17h6
Aliases: CVE-2012-2655 |
SECURITY DEFINER and SET attributes on procedural call handlers are not ignored and can be used to crash the servermore details |
Affected by 0 other vulnerabilities. |
|
VCID-35a3-5eq3-8bep
Aliases: CVE-2012-2143 |
Passwords containing the byte 0x80 passed to the crypt() function in pgcrypto are incorrectly truncated if DES encryption was usedmore details |
Affected by 0 other vulnerabilities. |
|
VCID-625c-amyd-dybm
Aliases: CVE-2015-3166 |
Unanticipated errors from the standard library.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-6mck-xykx-yuba
Aliases: CVE-2013-0255 |
executing enum_recv() with wrong parameters crashes servermore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-7jb6-q4x1-cfbw
Aliases: CVE-2012-3489 |
xml_parse() DTD validation can be used to read arbitrary filesmore details |
Affected by 0 other vulnerabilities. |
|
VCID-811b-x31n-tfch
Aliases: CVE-2012-0866 |
Permissions on a function called by a trigger are not properly checked.more details |
Affected by 0 other vulnerabilities. |
|
VCID-8bu8-zpfv-8bgg
Aliases: CVE-2016-5424 |
Exceptional database and role names could enable escalation to superusermore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8cbh-gwwy-n3eq
Aliases: CVE-2014-0064 |
Potential buffer overruns due to integer overflow in size calculations.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8j4f-u2tq-1qev
Aliases: CVE-2014-0061 |
Privilege escalation via calls to validator functions.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-9b6v-1bt1-dfgy
Aliases: CVE-2016-5423 |
Certain nested CASE/WHEN expressions can crash servermore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-a3sh-4t1e-tbh4
Aliases: CVE-2015-0244 |
An error in extended protocol message reading.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-bdq4-br3j-7kb8
Aliases: CVE-2012-3488 |
contrib/xml2's xslt_process() can be used to read and write arbitrary filesmore details |
Affected by 0 other vulnerabilities. |
|
VCID-bqag-mh3g-fqe7
Aliases: CVE-2014-0067 |
Unauthenticated users may gain access to the database server during "make check"..more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-f976-dd3s-fuc8
Aliases: CVE-2015-0243 |
Memory errors in functions in the pgcrypto extension.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-fd5z-bj21-m3a5
Aliases: CVE-2015-5288 |
Memory leak in crypt() function.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-g4tm-8zhw-a7hn
Aliases: CVE-2013-1900 |
Random numbers generated by contrib/pgcrypto functions may be easy for another database user to guessmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-k38h-5crc-u3hr
Aliases: CVE-2015-0242 |
Buffer overrun in replacement printf family of functions.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-kbgc-w2jw-auh8
Aliases: CVE-2014-0062 |
Race condition in CREATE INDEX allows for privilege escalation.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-mebz-9qb7-5bd2
Aliases: CVE-2015-3165 |
Double "free" after authentication timeoutmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-n3ka-63rx-5fgk
Aliases: CVE-2013-1899 |
A connection request containing a database name that begins with "-" may be crafted to damage or destroy files within a server's data directorymore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-nz16-gzhk-h3c1
Aliases: CVE-2014-0065 |
Potential buffer overruns of fixed-size buffers.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-pvxg-byvu-pbec
Aliases: CVE-2014-0066 |
Potential null pointer dereference crash when crypt(3) returns NULL.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-quqr-bg9k-7yb5
Aliases: CVE-2012-0868 |
Line breaks in object names can be exploited to execute arbitrary SQL when reloading a pg_dump file.more details |
Affected by 0 other vulnerabilities. |
|
VCID-raqj-ezua-skeb
Aliases: CVE-2015-0241 |
Buffer overruns in "to_char" functions.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-reab-s9cu-yudn
Aliases: CVE-2014-0063 |
Potential buffer overruns in datetime input/output.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-skb5-eeak-v7hz
Aliases: CVE-2013-1901 |
An unprivileged user can run commands that could interfere with in-progress backups.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-t864-ytjh-nyg1
Aliases: CVE-2016-0773 |
Unchecked regex can crash the servermore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-ux6m-dn6j-37dc
Aliases: CVE-2012-0867 |
SSL certificate name checks are truncated to 32 characters, allowing connection spoofing under some circumstances when using third party certificate authorities.more details |
Affected by 0 other vulnerabilities. |
|
VCID-w518-wkek-97ag
Aliases: CVE-2014-0060 |
SET ROLE bypasses lack of ADMIN OPTION.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-z4t8-c8vc-ayhd
Aliases: CVE-2016-7048 |
Interactive installer downloads software over plain HTTP, then executes itmore details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zbj3-7xug-43f6
Aliases: CVE-2014-8161 |
Constraint violation errors can cause display of values in columns which the user would not normally have rights to see.more details |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||