VulnerableCode Package Details - pkg:generic/postgresql@9.4.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:generic/postgresql@9.4.0

Essentials
History (49)

purl	pkg:generic/postgresql@9.4.0

Next non-vulnerable version	9.4.1
Latest non-vulnerable version	18.2.0
Risk	10.0

Vulnerabilities affecting this package (28)

Vulnerability	Summary	Fixed by
VCID-1qap-rdxz-4uer Aliases: CVE-2015-3167	pgcrypto has multiple error messages for decryption with an incorrect key.more details	9.4.2 Affected by 0 other vulnerabilities.
VCID-3qrq-rc38-13ep Aliases: CVE-2017-7546	empty password accepted in some authentication methodsmore details	9.4.13 Affected by 0 other vulnerabilities. 9.5.8 Affected by 0 other vulnerabilities. 9.6.4 Affected by 0 other vulnerabilities.
VCID-45vk-2xsq-cffk Aliases: CVE-2017-7485	libpq ignores PGREQUIRESSL environment variablemore details	9.4.12 Affected by 0 other vulnerabilities. 9.5.7 Affected by 0 other vulnerabilities. 9.6.3 Affected by 0 other vulnerabilities.
VCID-625c-amyd-dybm Aliases: CVE-2015-3166	Unanticipated errors from the standard library.more details	9.4.2 Affected by 0 other vulnerabilities.
VCID-723y-bsbd-6kfd Aliases: CVE-2017-7484	selectivity estimators bypass SELECT privilege checksmore details	9.4.12 Affected by 0 other vulnerabilities. 9.5.7 Affected by 0 other vulnerabilities. 9.6.3 Affected by 0 other vulnerabilities.
VCID-7xfn-1fv3-1bgv Aliases: CVE-2018-1058	Uncontrolled search path element in pg_dump and other client applicationsmore details	9.4.17 Affected by 0 other vulnerabilities. 9.5.12 Affected by 0 other vulnerabilities. 9.6.8 Affected by 0 other vulnerabilities. 10.3.0 Affected by 0 other vulnerabilities.
VCID-8bu8-zpfv-8bgg Aliases: CVE-2016-5424	Exceptional database and role names could enable escalation to superusermore details	9.4.9 Affected by 0 other vulnerabilities. 9.5.4 Affected by 0 other vulnerabilities.
VCID-9b6v-1bt1-dfgy Aliases: CVE-2016-5423	Certain nested CASE/WHEN expressions can crash servermore details	9.4.9 Affected by 0 other vulnerabilities. 9.5.4 Affected by 0 other vulnerabilities.
VCID-a3sh-4t1e-tbh4 Aliases: CVE-2015-0244	An error in extended protocol message reading.more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-bb5j-e9vw-mbd1 Aliases: CVE-2019-10208	TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER executionmore details	9.4.24 Affected by 0 other vulnerabilities. 9.5.19 Affected by 0 other vulnerabilities. 9.6.15 Affected by 0 other vulnerabilities. 10.10.0 Affected by 0 other vulnerabilities. 11.5.0 Affected by 0 other vulnerabilities.
VCID-bqag-mh3g-fqe7 Aliases: CVE-2014-0067	Unauthenticated users may gain access to the database server during "make check"..more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-csfh-831q-rqfv Aliases: CVE-2017-7547	pg_user_mappings view discloses passwords to users lacking server privilegesmore details	9.4.13 Affected by 0 other vulnerabilities. 9.5.8 Affected by 0 other vulnerabilities. 9.6.4 Affected by 0 other vulnerabilities.
VCID-d362-bmcf-3kdz Aliases: CVE-2017-15098	Memory disclosure in JSON functionsmore details	9.4.15 Affected by 0 other vulnerabilities. 9.5.10 Affected by 0 other vulnerabilities. 9.6.6 Affected by 0 other vulnerabilities. 10.1.0 Affected by 0 other vulnerabilities.
VCID-esps-vak5-bqcp Aliases: CVE-2015-5289	Unchecked JSON input can crash the servermore details	9.4.5 Affected by 0 other vulnerabilities.
VCID-f976-dd3s-fuc8 Aliases: CVE-2015-0243	Memory errors in functions in the pgcrypto extension.more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-fd5z-bj21-m3a5 Aliases: CVE-2015-5288	Memory leak in crypt() function.more details	9.4.5 Affected by 0 other vulnerabilities.
VCID-k38h-5crc-u3hr Aliases: CVE-2015-0242	Buffer overrun in replacement printf family of functions.more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-mebz-9qb7-5bd2 Aliases: CVE-2015-3165	Double "free" after authentication timeoutmore details	9.4.2 Affected by 0 other vulnerabilities.
VCID-qn5k-y64c-7ffc Aliases: CVE-2017-7486	pg_user_mappings view discloses foreign server passwordsmore details	9.4.12 Affected by 0 other vulnerabilities. 9.5.7 Affected by 0 other vulnerabilities. 9.6.3 Affected by 0 other vulnerabilities.
VCID-qnt9-qr7p-wkhy Aliases: CVE-2017-12172	Start scripts permit database administrator to modify root-owned filesmore details	9.4.15 Affected by 0 other vulnerabilities. 9.5.10 Affected by 0 other vulnerabilities. 9.6.6 Affected by 0 other vulnerabilities. 10.1.0 Affected by 0 other vulnerabilities.
VCID-raqj-ezua-skeb Aliases: CVE-2015-0241	Buffer overruns in "to_char" functions.more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-sq2s-cvrs-7uhh Aliases: CVE-2018-10915	Certain host connection parameters defeat client-side security defensesmore details	9.4.19 Affected by 0 other vulnerabilities. 9.5.14 Affected by 0 other vulnerabilities. 9.6.10 Affected by 0 other vulnerabilities. 10.5.0 Affected by 0 other vulnerabilities.
VCID-t864-ytjh-nyg1 Aliases: CVE-2016-0773	Unchecked regex can crash the servermore details	9.4.6 Affected by 0 other vulnerabilities. 9.5.1 Affected by 0 other vulnerabilities.
VCID-um7d-pzhb-n3c9 Aliases: CVE-2017-7548	lo_put() function ignores ACLsmore details	9.4.13 Affected by 0 other vulnerabilities. 9.5.8 Affected by 0 other vulnerabilities. 9.6.4 Affected by 0 other vulnerabilities.
VCID-wcsh-zz5q-qqbf Aliases: CVE-2018-1053	pg_upgrade creates file of sensitive metadata under prevailing umaskmore details	9.4.16 Affected by 0 other vulnerabilities. 9.5.11 Affected by 0 other vulnerabilities. 9.6.7 Affected by 0 other vulnerabilities. 10.2.0 Affected by 0 other vulnerabilities.
VCID-z4t8-c8vc-ayhd Aliases: CVE-2016-7048	Interactive installer downloads software over plain HTTP, then executes itmore details	9.4.10 Affected by 0 other vulnerabilities. 9.5.5 Affected by 0 other vulnerabilities.
VCID-zbj3-7xug-43f6 Aliases: CVE-2014-8161	Constraint violation errors can cause display of values in columns which the user would not normally have rights to see.more details	9.4.1 Affected by 0 other vulnerabilities.
VCID-zrcc-w98g-gfhk Aliases: CVE-2019-3466	pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details	9.4.25 Affected by 0 other vulnerabilities. 9.5.20 Affected by 0 other vulnerabilities. 9.6.16 Affected by 0 other vulnerabilities. 10.11.0 Affected by 0 other vulnerabilities. 11.6.0 Affected by 0 other vulnerabilities. 12.1.0 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T12:35:18.517595+00:00	PostgreSQL Importer	Affected by	VCID-qnt9-qr7p-wkhy	https://www.postgresql.org/support/security/CVE-2017-12172	38.4.0
2026-04-15T12:35:18.390634+00:00	PostgreSQL Importer	Affected by	VCID-d362-bmcf-3kdz	https://www.postgresql.org/support/security/CVE-2017-15098	38.4.0
2026-04-15T12:35:18.193951+00:00	PostgreSQL Importer	Affected by	VCID-wcsh-zz5q-qqbf	https://www.postgresql.org/support/security/CVE-2018-1053	38.4.0
2026-04-15T12:35:18.066792+00:00	PostgreSQL Importer	Affected by	VCID-7xfn-1fv3-1bgv	https://www.postgresql.org/support/security/CVE-2018-1058	38.4.0
2026-04-15T12:35:17.942694+00:00	PostgreSQL Importer	Affected by	VCID-sq2s-cvrs-7uhh	https://www.postgresql.org/support/security/CVE-2018-10915	38.4.0
2026-04-15T12:35:17.711189+00:00	PostgreSQL Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.postgresql.org/support/security/CVE-2019-3466	38.4.0
2026-04-15T12:35:17.239529+00:00	PostgreSQL Importer	Affected by	VCID-bb5j-e9vw-mbd1	https://www.postgresql.org/support/security/CVE-2019-10208	38.4.0
2026-04-11T12:33:27.268307+00:00	PostgreSQL Importer	Affected by	VCID-qnt9-qr7p-wkhy	https://www.postgresql.org/support/security/CVE-2017-12172	38.3.0
2026-04-11T12:33:27.122638+00:00	PostgreSQL Importer	Affected by	VCID-d362-bmcf-3kdz	https://www.postgresql.org/support/security/CVE-2017-15098	38.3.0
2026-04-11T12:33:26.895867+00:00	PostgreSQL Importer	Affected by	VCID-wcsh-zz5q-qqbf	https://www.postgresql.org/support/security/CVE-2018-1053	38.3.0
2026-04-11T12:33:26.749364+00:00	PostgreSQL Importer	Affected by	VCID-7xfn-1fv3-1bgv	https://www.postgresql.org/support/security/CVE-2018-1058	38.3.0
2026-04-11T12:33:26.562670+00:00	PostgreSQL Importer	Affected by	VCID-sq2s-cvrs-7uhh	https://www.postgresql.org/support/security/CVE-2018-10915	38.3.0
2026-04-11T12:33:26.274476+00:00	PostgreSQL Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.postgresql.org/support/security/CVE-2019-3466	38.3.0
2026-04-11T12:33:25.712814+00:00	PostgreSQL Importer	Affected by	VCID-bb5j-e9vw-mbd1	https://www.postgresql.org/support/security/CVE-2019-10208	38.3.0
2026-04-03T19:57:08.997879+00:00	PostgreSQL Importer	Affected by	VCID-d362-bmcf-3kdz	https://www.postgresql.org/support/security/CVE-2017-15098	38.1.0
2026-04-03T19:57:08.785912+00:00	PostgreSQL Importer	Affected by	VCID-wcsh-zz5q-qqbf	https://www.postgresql.org/support/security/CVE-2018-1053	38.1.0
2026-04-03T19:57:08.646675+00:00	PostgreSQL Importer	Affected by	VCID-7xfn-1fv3-1bgv	https://www.postgresql.org/support/security/CVE-2018-1058	38.1.0
2026-04-03T19:57:08.470228+00:00	PostgreSQL Importer	Affected by	VCID-sq2s-cvrs-7uhh	https://www.postgresql.org/support/security/CVE-2018-10915	38.1.0
2026-04-03T19:57:08.227282+00:00	PostgreSQL Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.postgresql.org/support/security/CVE-2019-3466	38.1.0
2026-04-03T19:57:07.731071+00:00	PostgreSQL Importer	Affected by	VCID-bb5j-e9vw-mbd1	https://www.postgresql.org/support/security/CVE-2019-10208	38.1.0
2026-04-03T19:57:05.801223+00:00	PostgreSQL Importer	Affected by	VCID-qnt9-qr7p-wkhy	https://www.postgresql.org/support/security/CVE-2017-12172	38.1.0
2026-04-01T12:35:56.782142+00:00	PostgreSQL Importer	Affected by	VCID-bqag-mh3g-fqe7	https://www.postgresql.org/support/security/CVE-2014-0067	38.0.0
2026-04-01T12:35:56.709553+00:00	PostgreSQL Importer	Affected by	VCID-zbj3-7xug-43f6	https://www.postgresql.org/support/security/CVE-2014-8161	38.0.0
2026-04-01T12:35:56.637623+00:00	PostgreSQL Importer	Affected by	VCID-raqj-ezua-skeb	https://www.postgresql.org/support/security/CVE-2015-0241	38.0.0
2026-04-01T12:35:56.567644+00:00	PostgreSQL Importer	Affected by	VCID-k38h-5crc-u3hr	https://www.postgresql.org/support/security/CVE-2015-0242	38.0.0
2026-04-01T12:35:56.497230+00:00	PostgreSQL Importer	Affected by	VCID-f976-dd3s-fuc8	https://www.postgresql.org/support/security/CVE-2015-0243	38.0.0
2026-04-01T12:35:56.421387+00:00	PostgreSQL Importer	Affected by	VCID-a3sh-4t1e-tbh4	https://www.postgresql.org/support/security/CVE-2015-0244	38.0.0
2026-04-01T12:35:56.347171+00:00	PostgreSQL Importer	Affected by	VCID-mebz-9qb7-5bd2	https://www.postgresql.org/support/security/CVE-2015-3165	38.0.0
2026-04-01T12:35:56.273067+00:00	PostgreSQL Importer	Affected by	VCID-625c-amyd-dybm	https://www.postgresql.org/support/security/CVE-2015-3166	38.0.0
2026-04-01T12:35:56.195696+00:00	PostgreSQL Importer	Affected by	VCID-1qap-rdxz-4uer	https://www.postgresql.org/support/security/CVE-2015-3167	38.0.0
2026-04-01T12:35:56.121945+00:00	PostgreSQL Importer	Affected by	VCID-fd5z-bj21-m3a5	https://www.postgresql.org/support/security/CVE-2015-5288	38.0.0
2026-04-01T12:35:56.090617+00:00	PostgreSQL Importer	Affected by	VCID-esps-vak5-bqcp	https://www.postgresql.org/support/security/CVE-2015-5289	38.0.0
2026-04-01T12:35:56.021253+00:00	PostgreSQL Importer	Affected by	VCID-t864-ytjh-nyg1	https://www.postgresql.org/support/security/CVE-2016-0773	38.0.0
2026-04-01T12:35:55.947507+00:00	PostgreSQL Importer	Affected by	VCID-9b6v-1bt1-dfgy	https://www.postgresql.org/support/security/CVE-2016-5423	38.0.0
2026-04-01T12:35:55.877158+00:00	PostgreSQL Importer	Affected by	VCID-8bu8-zpfv-8bgg	https://www.postgresql.org/support/security/CVE-2016-5424	38.0.0
2026-04-01T12:35:55.805987+00:00	PostgreSQL Importer	Affected by	VCID-z4t8-c8vc-ayhd	https://www.postgresql.org/support/security/CVE-2016-7048	38.0.0
2026-04-01T12:35:55.733308+00:00	PostgreSQL Importer	Affected by	VCID-723y-bsbd-6kfd	https://www.postgresql.org/support/security/CVE-2017-7484	38.0.0
2026-04-01T12:35:55.679894+00:00	PostgreSQL Importer	Affected by	VCID-45vk-2xsq-cffk	https://www.postgresql.org/support/security/CVE-2017-7485	38.0.0
2026-04-01T12:35:55.608321+00:00	PostgreSQL Importer	Affected by	VCID-qn5k-y64c-7ffc	https://www.postgresql.org/support/security/CVE-2017-7486	38.0.0
2026-04-01T12:35:55.526482+00:00	PostgreSQL Importer	Affected by	VCID-3qrq-rc38-13ep	https://www.postgresql.org/support/security/CVE-2017-7546	38.0.0
2026-04-01T12:35:55.453232+00:00	PostgreSQL Importer	Affected by	VCID-csfh-831q-rqfv	https://www.postgresql.org/support/security/CVE-2017-7547	38.0.0
2026-04-01T12:35:55.409680+00:00	PostgreSQL Importer	Affected by	VCID-um7d-pzhb-n3c9	https://www.postgresql.org/support/security/CVE-2017-7548	38.0.0
2026-04-01T12:35:55.321300+00:00	PostgreSQL Importer	Affected by	VCID-qnt9-qr7p-wkhy	https://www.postgresql.org/support/security/CVE-2017-12172	38.0.0
2026-04-01T12:35:55.245290+00:00	PostgreSQL Importer	Affected by	VCID-d362-bmcf-3kdz	https://www.postgresql.org/support/security/CVE-2017-15098	38.0.0
2026-04-01T12:35:55.173514+00:00	PostgreSQL Importer	Affected by	VCID-wcsh-zz5q-qqbf	https://www.postgresql.org/support/security/CVE-2018-1053	38.0.0
2026-04-01T12:35:55.100927+00:00	PostgreSQL Importer	Affected by	VCID-7xfn-1fv3-1bgv	https://www.postgresql.org/support/security/CVE-2018-1058	38.0.0
2026-04-01T12:35:55.029754+00:00	PostgreSQL Importer	Affected by	VCID-sq2s-cvrs-7uhh	https://www.postgresql.org/support/security/CVE-2018-10915	38.0.0
2026-04-01T12:35:54.934154+00:00	PostgreSQL Importer	Affected by	VCID-zrcc-w98g-gfhk	https://www.postgresql.org/support/security/CVE-2019-3466	38.0.0
2026-04-01T12:35:54.719136+00:00	PostgreSQL Importer	Affected by	VCID-bb5j-e9vw-mbd1	https://www.postgresql.org/support/security/CVE-2019-10208	38.0.0