VulnerableCode Package Details - pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

Search for packages

Package details: pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

Essentials
History (9)

purl	pkg:deb/debian/postgresql-9.4@9.4.12-0%2Bdeb8u1~bpo7%2B1

Next non-vulnerable version	9.4.18-0+deb8u1
Latest non-vulnerable version	9.4.18-0+deb8u1
Risk	4.0

Vulnerabilities affecting this package (7)

Vulnerability	Summary	Fixed by
VCID-ayub-6tgu-a3av Aliases: CVE-2017-7485	libpq ignores PGREQUIRESSL environment variablemore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-dst1-7hc3-nuhw Aliases: CVE-2017-7548	lo_put() function ignores ACLsmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-jq1k-pw3x-nyaf Aliases: CVE-2017-7547	pg_user_mappings view discloses passwords to users lacking server privilegesmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-sxun-92uz-37hj Aliases: CVE-2017-7546	empty password accepted in some authentication methodsmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-tt1x-j91p-n7a2 Aliases: CVE-2017-15098	Memory disclosure in JSON functionsmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-vsmn-9zxt-1qa4 Aliases: CVE-2017-7486	pg_user_mappings view discloses foreign server passwordsmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.
VCID-wde1-18sj-u3a5 Aliases: CVE-2017-7484	selectivity estimators bypass SELECT privilege checksmore details	9.4.18-0+deb8u1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-h8dt-f7ga-nyds	Exceptional database and role names could enable escalation to superusermore details	CVE-2016-5424
VCID-vpdr-kkm3-8uc6	Certain nested CASE/WHEN expressions can crash servermore details	CVE-2016-5423

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T10:22:34.786292+00:00	Debian Oval Importer	Fixing	VCID-vpdr-kkm3-8uc6	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:19:57.865635+00:00	Debian Oval Importer	Fixing	VCID-h8dt-f7ga-nyds	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:15:18.624275+00:00	Debian Oval Importer	Affected by	VCID-wde1-18sj-u3a5	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:12:51.371087+00:00	Debian Oval Importer	Affected by	VCID-dst1-7hc3-nuhw	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:11:37.440277+00:00	Debian Oval Importer	Affected by	VCID-vsmn-9zxt-1qa4	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:10:37.609832+00:00	Debian Oval Importer	Affected by	VCID-sxun-92uz-37hj	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T10:04:47.162637+00:00	Debian Oval Importer	Affected by	VCID-tt1x-j91p-n7a2	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T09:59:11.118399+00:00	Debian Oval Importer	Affected by	VCID-jq1k-pw3x-nyaf	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0
2025-08-01T09:58:49.983976+00:00	Debian Oval Importer	Affected by	VCID-ayub-6tgu-a3av	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0