Search for packages
Package details: pkg:generic/postgresql@13.11.0
purl pkg:generic/postgresql@13.11.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-m2ku-ydb8-aaaf Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security definer functions or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise-forbidden reads and modifications. This affects only databases that have used CREATE POLICY to define a row security policy. CVE-2023-2455
VCID-y8yz-9q93-aaaq schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code. CVE-2023-2454

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-25T18:29:46.770044+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.3
2025-06-25T18:29:46.719636+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.3
2025-06-04T05:59:06.937246+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.0
2025-06-04T05:59:06.900858+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.0
2025-06-02T20:35:50.069722+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.2
2025-06-02T20:35:50.027241+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.2
2025-03-28T07:42:17.186092+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.0.0
2025-03-28T07:42:17.003035+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.0.0
2024-11-18T17:45:38.353307+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.3.2
2024-11-18T17:45:37.868286+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.3.2
2024-09-18T01:54:08.103533+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.0.1
2024-09-18T01:54:07.970801+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.0.1
2024-01-03T22:22:46.649011+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.0.0rc1
2024-01-03T22:22:46.514269+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.0.0rc1