Search for packages
| purl | pkg:alpm/archlinux/postgresql@9.6.2-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-etyx-9bbz-aaam
Aliases: CVE-2017-7486 |
PostgreSQL versions 8.4 - 9.6 are vulnerable to information leak in pg_user_mappings view which discloses foreign server passwords to any user having USAGE privilege on the associated foreign server. |
Affected by 0 other vulnerabilities. |
|
VCID-mm2s-tcve-aaap
Aliases: CVE-2017-7484 |
It was found that some selectivity estimation functions in PostgreSQL before 9.2.21, 9.3.x before 9.3.17, 9.4.x before 9.4.12, 9.5.x before 9.5.7, and 9.6.x before 9.6.3 did not check user privileges before providing information from pg_statistic, possibly leaking information. An unprivileged attacker could use this flaw to steal some information from tables they are otherwise not allowed to access. |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:59.143247+00:00 | Arch Linux Importer | Affected by | VCID-mm2s-tcve-aaap | https://security.archlinux.org/AVG-272 | 36.0.0 |
| 2025-03-28T07:46:59.122532+00:00 | Arch Linux Importer | Affected by | VCID-etyx-9bbz-aaam | https://security.archlinux.org/AVG-272 | 36.0.0 |
| 2024-12-17T23:22:04.015396+00:00 | Arch Linux Importer | Affected by | VCID-mm2s-tcve-aaap | https://security.archlinux.org/AVG-272 | 35.0.0 |
| 2024-12-17T23:22:03.569740+00:00 | Arch Linux Importer | Affected by | VCID-etyx-9bbz-aaam | https://security.archlinux.org/AVG-272 | 35.0.0 |
| 2024-09-18T02:02:20.964014+00:00 | Arch Linux Importer | Affected by | VCID-mm2s-tcve-aaap | https://security.archlinux.org/AVG-272 | 34.0.1 |
| 2024-09-18T02:02:20.939651+00:00 | Arch Linux Importer | Affected by | VCID-etyx-9bbz-aaam | https://security.archlinux.org/AVG-272 | 34.0.1 |
| 2024-02-02T20:42:26.572886+00:00 | Arch Linux Importer | Affected by | VCID-mm2s-tcve-aaap | https://security.archlinux.org/AVG-272 | 34.0.0rc2 |
| 2024-02-02T20:42:26.550810+00:00 | Arch Linux Importer | Affected by | VCID-etyx-9bbz-aaam | https://security.archlinux.org/AVG-272 | 34.0.0rc2 |
| 2024-01-03T22:28:22.586232+00:00 | Arch Linux Importer | Affected by | VCID-mm2s-tcve-aaap | https://security.archlinux.org/AVG-272 | 34.0.0rc1 |
| 2024-01-03T22:28:22.564720+00:00 | Arch Linux Importer | Affected by | VCID-etyx-9bbz-aaam | https://security.archlinux.org/AVG-272 | 34.0.0rc1 |