Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/505943?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "type": "ebuild", "namespace": "dev-db", "name": "postgresql-base", "version": "9.0.5", "qualifiers": {}, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58278?format=api", "vulnerability_id": "VCID-4txe-xr3q-83dy", "summary": "The fix for issue CVE-2007-6600 (below) failed to include protection against misuse of RESET SESSION AUTHORIZATION.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3230.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3230.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3230", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75283", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75313", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75316", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75307", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75293", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00853", "scoring_system": "epss", "scoring_elements": "0.75319", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3230" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-3230/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-3230/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=522085", "reference_id": "522085", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522085" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1484", "reference_id": "RHSA-2009:1484", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1484" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1485", "reference_id": "RHSA-2009:1485", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1485" }, { "reference_url": "https://usn.ubuntu.com/834-1/", "reference_id": "USN-834-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/834-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-3230" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4txe-xr3q-83dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58270?format=api", "vulnerability_id": "VCID-8ygp-svda-y7a3", "summary": "An authenticated database user can cause a buffer overrun by calling functions from the intarray optional module with certain parameters.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4015.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4015.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4015", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04047", "scoring_system": "epss", "scoring_elements": "0.88717", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04047", "scoring_system": "epss", "scoring_elements": "0.88734", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.04047", "scoring_system": "epss", "scoring_elements": "0.88735", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.04047", "scoring_system": "epss", "scoring_elements": "0.8875", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4015" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2010-4015/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2010-4015/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=664402", "reference_id": "664402", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=664402" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0197", "reference_id": "RHSA-2011:0197", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0197" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:0198", "reference_id": "RHSA-2011:0198", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:0198" }, { "reference_url": "https://usn.ubuntu.com/1058-1/", "reference_id": "USN-1058-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1058-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-4015" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8ygp-svda-y7a3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58279?format=api", "vulnerability_id": "VCID-adng-b4ng-9uhj", "summary": "Authenticated non-superusers can shut down the backend server by re-LOAD-ing libraries in $libdir/plugins, if any libraries are present there.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3229.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3229.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80261", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80286", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80289", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80285", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80278", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01327", "scoring_system": "epss", "scoring_elements": "0.80299", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3229" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-3229/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-3229/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=522092", "reference_id": "522092", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522092" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://usn.ubuntu.com/834-1/", "reference_id": "USN-834-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/834-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-3229" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-adng-b4ng-9uhj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58273?format=api", "vulnerability_id": "VCID-cyv8-b16y-1uby", "summary": "Insecure permissions on the pltcl_modules table could allow an authenticated user to run arbitrary Tcl code on the\n database server if PL/Tcl is installed and enabled.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1170.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1170.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1170", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51919", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51978", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51988", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51967", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51936", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00283", "scoring_system": "epss", "scoring_elements": "0.51956", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1170" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2010-1170/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2010-1170/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=583072", "reference_id": "583072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=583072" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0427", "reference_id": "RHSA-2010:0427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0428", "reference_id": "RHSA-2010:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0429", "reference_id": "RHSA-2010:0429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0429" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0430", "reference_id": "RHSA-2010:0430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0430" }, { "reference_url": "https://usn.ubuntu.com/942-1/", "reference_id": "USN-942-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/942-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-1170" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cyv8-b16y-1uby" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/116391?format=api", "vulnerability_id": "VCID-gp56-m49y-3khq", "summary": "postgresql: Integer overflow in hash table size calculation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0733.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0733.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0733", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07672", "scoring_system": "epss", "scoring_elements": "0.92044", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.07672", "scoring_system": "epss", "scoring_elements": "0.92056", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.07672", "scoring_system": "epss", "scoring_elements": "0.92054", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.07672", "scoring_system": "epss", "scoring_elements": "0.92053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.07672", "scoring_system": "epss", "scoring_elements": "0.92067", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0733" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=546621", "reference_id": "546621", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=546621" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/33729.txt", "reference_id": "CVE-2010-0733;OSVDB-63208", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/33729.txt" }, { "reference_url": "https://www.securityfocus.com/bid/38619/info", "reference_id": "CVE-2010-0733;OSVDB-63208", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/38619/info" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0427", "reference_id": "RHSA-2010:0427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0428", "reference_id": "RHSA-2010:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0429", "reference_id": "RHSA-2010:0429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0429" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-0733" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gp56-m49y-3khq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58271?format=api", "vulnerability_id": "VCID-gz1d-br15-13hq", "summary": "An authenticated database user can manipulate modules and tied variables in some external procedural languages to execute code with enhanced privileges.Detailsmore details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3433.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-3433.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-3433", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.82404", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.82432", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.8243", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.82429", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.82422", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01661", "scoring_system": "epss", "scoring_elements": "0.82436", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-3433" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2010-3433/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2010-3433/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=639371", "reference_id": "639371", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=639371" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0742", "reference_id": "RHSA-2010:0742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0908", "reference_id": "RHSA-2010:0908", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0908" }, { "reference_url": "https://usn.ubuntu.com/1002-1/", "reference_id": "USN-1002-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1002-1/" }, { "reference_url": "https://usn.ubuntu.com/1002-2/", "reference_id": "USN-1002-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1002-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-3433" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gz1d-br15-13hq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58272?format=api", "vulnerability_id": "VCID-m9d5-336u-2ybk", "summary": "An unprivileged database user can remove superuser-only\nsettings that were applied to his account with ALTER USER by a superuser, thus\nbypassing settings that should be enforced.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1975.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1975.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1975", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51397", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51458", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51465", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.51443", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.5141", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00277", "scoring_system": "epss", "scoring_elements": "0.5143", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1975" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2010-1975/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2010-1975/" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8756", "reference_id": "RHSA-2026:8756", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8756" }, { "reference_url": "https://usn.ubuntu.com/942-1/", "reference_id": "USN-942-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/942-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-1975" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "4.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m9d5-336u-2ybk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58280?format=api", "vulnerability_id": "VCID-n3jm-s9mk-rfcn", "summary": "It is possible to cause a momentary denial of service when there is a failure to convert a localized error message to the client-specified encoding. A valid login is required to exploit this vulnerability.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0922.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0922.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0922", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92812", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92824", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92819", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92815", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92813", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.09096", "scoring_system": "epss", "scoring_elements": "0.92827", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-0922" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-0922/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-0922/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=488156", "reference_id": "488156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=488156" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32849.txt", "reference_id": "CVE-2009-0922;OSVDB-54512", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/32849.txt" }, { "reference_url": "https://www.securityfocus.com/bid/34090/info", "reference_id": "CVE-2009-0922;OSVDB-54512", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/34090/info" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2009:1484", "reference_id": "RHSA-2009:1484", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2009:1484" }, { "reference_url": "https://usn.ubuntu.com/753-1/", "reference_id": "USN-753-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/753-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-0922" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-n3jm-s9mk-rfcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58277?format=api", "vulnerability_id": "VCID-pj2p-mvsm-w7ge", "summary": "If PostgreSQL is configured with LDAP authentication, and your LDAP configuration allows anonymous binds, it is possible for a user to authenticate themselves with an empty password.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3231.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.90678", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.90691", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.9069", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.90688", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.90686", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.05806", "scoring_system": "epss", "scoring_elements": "0.90703", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-3231" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-3231/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-3231/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=522084", "reference_id": "522084", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=522084" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://usn.ubuntu.com/834-1/", "reference_id": "USN-834-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/834-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-3231" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-pj2p-mvsm-w7ge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58275?format=api", "vulnerability_id": "VCID-r24r-d4vw-dqgg", "summary": "Privilege escalation via changing session state in an index function. This closes a corner case related to vulnerabilities CVE-2009-3230 and CVE-2007-6600 (below).more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4136.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4136.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4136", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01579", "scoring_system": "epss", "scoring_elements": "0.81904", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01579", "scoring_system": "epss", "scoring_elements": "0.81938", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01579", "scoring_system": "epss", "scoring_elements": "0.8194", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01579", "scoring_system": "epss", "scoring_elements": "0.81932", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01579", "scoring_system": "epss", "scoring_elements": "0.81947", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4136" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-4136/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-4136/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=546321", "reference_id": "546321", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=546321" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0427", "reference_id": "RHSA-2010:0427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0428", "reference_id": "RHSA-2010:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0429", "reference_id": "RHSA-2010:0429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0429" }, { "reference_url": "https://usn.ubuntu.com/876-1/", "reference_id": "USN-876-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/876-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-4136" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r24r-d4vw-dqgg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58274?format=api", "vulnerability_id": "VCID-sdsz-e4vy-pfcy", "summary": "A vulnerability in Safe.pm and PL/Perl can allow an authenticated user to run arbitrary Perl code on the database\n server if PL/Perl is installed and enabled.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1169.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1169.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1169", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74072", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74105", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74109", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74095", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74078", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00781", "scoring_system": "epss", "scoring_elements": "0.74104", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1169" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2010-1169/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2010-1169/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=582615", "reference_id": "582615", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=582615" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0427", "reference_id": "RHSA-2010:0427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0428", "reference_id": "RHSA-2010:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0429", "reference_id": "RHSA-2010:0429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0429" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0430", "reference_id": "RHSA-2010:0430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0430" }, { "reference_url": "https://usn.ubuntu.com/942-1/", "reference_id": "USN-942-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/942-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-1169" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sdsz-e4vy-pfcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/58276?format=api", "vulnerability_id": "VCID-sxcq-kcrg-yudj", "summary": "NULL Bytes in SSL Certificates can be used to falsify client or server authentication. This only affects users who have SSL enabled, perform certificate name validation or client certificate authentication, and where the Certificate Authority (CA) has been tricked into issuing invalid certificates. The use of a CA that can be trusted to always issue valid certificates is recommended to ensure you are not vulnerable to this issue.more details", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4034.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4034.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4034", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.88415", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.88434", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.88436", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03854", "scoring_system": "epss", "scoring_elements": "0.8845", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-4034" }, { "reference_url": "https://www.postgresql.org/support/security/CVE-2009-4034/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.postgresql.org/support/security/CVE-2009-4034/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=547662", "reference_id": "547662", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=547662" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://usn.ubuntu.com/876-1/", "reference_id": "USN-876-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/876-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2009-4034" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sxcq-kcrg-yudj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/75759?format=api", "vulnerability_id": "VCID-ts54-8sb7-tkfp", "summary": "crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext password by leveraging knowledge of a password hash.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2483.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-2483.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2483", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91661", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91674", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91676", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91673", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91671", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.07072", "scoring_system": "epss", "scoring_elements": "0.91686", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-2483" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2483", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2483" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=679628", "reference_id": "679628", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=679628" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=715025", "reference_id": "715025", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=715025" }, { "reference_url": "https://security.gentoo.org/glsa/201110-06", "reference_id": "GLSA-201110-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-06" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1377", "reference_id": "RHSA-2011:1377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1378", "reference_id": "RHSA-2011:1378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1423", "reference_id": "RHSA-2011:1423", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1423" }, { "reference_url": "https://usn.ubuntu.com/1229-1/", "reference_id": "USN-1229-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1229-1/" }, { "reference_url": "https://usn.ubuntu.com/1231-1/", "reference_id": "USN-1231-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1231-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2011-2483" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ts54-8sb7-tkfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/97813?format=api", "vulnerability_id": "VCID-tvak-fxas-xye4", "summary": "The Safe (aka Safe.pm) module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended (1) Safe::reval and (2) Safe::rdo access restrictions, and inject and execute arbitrary code, via vectors involving subroutine references and delayed execution.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1447.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64112", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64156", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64164", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64153", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64142", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00453", "scoring_system": "epss", "scoring_elements": "0.64161", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1447" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=588269", "reference_id": "588269", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=588269" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0457", "reference_id": "RHSA-2010:0457", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0457" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0458", "reference_id": "RHSA-2010:0458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0458" }, { "reference_url": "https://usn.ubuntu.com/1129-1/", "reference_id": "USN-1129-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1129-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-1447" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tvak-fxas-xye4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/116356?format=api", "vulnerability_id": "VCID-w2sp-tfeq-gfg1", "summary": "postgresql: substring() negative length argument buffer overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0442.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-0442.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0442", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.09972", "scoring_system": "epss", "scoring_elements": "0.93178", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.09972", "scoring_system": "epss", "scoring_elements": "0.93189", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.09972", "scoring_system": "epss", "scoring_elements": "0.93186", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.09972", "scoring_system": "epss", "scoring_elements": "0.93184", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.09972", "scoring_system": "epss", "scoring_elements": "0.93191", "published_at": "2026-06-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-0442" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=559259", "reference_id": "559259", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=559259" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33571.txt", "reference_id": "CVE-2010-0442;OSVDB-62129", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/33571.txt" }, { "reference_url": "https://www.securityfocus.com/bid/37973/info", "reference_id": "CVE-2010-0442;OSVDB-62129", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/37973/info" }, { "reference_url": "https://security.gentoo.org/glsa/201110-22", "reference_id": "GLSA-201110-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-22" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0427", "reference_id": "RHSA-2010:0427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0428", "reference_id": "RHSA-2010:0428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0429", "reference_id": "RHSA-2010:0429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0429" }, { "reference_url": "https://usn.ubuntu.com/933-1/", "reference_id": "USN-933-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/933-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/505941?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.3.18", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.3.18" }, { "url": "http://public2.vulnerablecode.io/api/packages/505942?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@8.4.11", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@8.4.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/505943?format=api", "purl": "pkg:ebuild/dev-db/postgresql-base@9.0.5", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" } ], "aliases": [ "CVE-2010-0442" ], "risk_score": 0.2, "exploitability": "2.0", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w2sp-tfeq-gfg1" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-db/postgresql-base@9.0.5" }