Search for packages
Package details: pkg:generic/postgresql@14.8.0
purl pkg:generic/postgresql@14.8.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-m2ku-ydb8-aaaf Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certain cases where role-specific policies are used and a given query is planned under one role and then executed under other roles. This scenario can happen under security definer functions or when a common user and query is planned initially and then re-used across multiple SET ROLEs. Applying an incorrect policy may permit a user to complete otherwise-forbidden reads and modifications. This affects only databases that have used CREATE POLICY to define a row security policy. CVE-2023-2455
VCID-y8yz-9q93-aaaq schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an authed attacker with elevated database-level privileges to execute arbitrary code. CVE-2023-2454

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-25T18:29:46.755385+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.3
2025-06-25T18:29:46.705815+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.3
2025-06-04T05:59:06.927124+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.0
2025-06-04T05:59:06.892035+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.0
2025-06-02T20:35:50.060261+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.1.2
2025-06-02T20:35:50.017445+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.1.2
2025-03-28T07:42:17.151953+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 36.0.0
2025-03-28T07:42:16.968876+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 36.0.0
2024-11-18T17:45:38.192699+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.3.2
2024-11-18T17:45:37.708584+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.3.2
2024-09-18T01:54:08.074183+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.0.1
2024-09-18T01:54:07.941062+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.0.1
2024-01-03T22:22:46.619194+00:00 PostgreSQL Importer Fixing VCID-y8yz-9q93-aaaq https://www.postgresql.org/support/security/CVE-2023-2454 34.0.0rc1
2024-01-03T22:22:46.483097+00:00 PostgreSQL Importer Fixing VCID-m2ku-ydb8-aaaf https://www.postgresql.org/support/security/CVE-2023-2455 34.0.0rc1