VulnerableCode Package Details - pkg:deb/debian/postgresql-common@94lenny1

Search for packages

Vulnerability	Summary	Fixed by
VCID-frpw-pnca-fya4 Aliases: CVE-2019-3466	pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details	181+deb9u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 200+deb10u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 225+deb11u1 Affected by 0 other vulnerabilities.
VCID-fu9y-ve85-93a6 Aliases: CVE-2017-8806		165+deb8u3 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 181+deb9u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 200+deb10u5 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-yy9q-5kjq-bfe9 Aliases: CVE-2016-1255		181+deb9u1~bpo8+1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-frpw-pnca-fya4
Aliases:
CVE-2019-3466

pg_ctlcluster script in postgresql-common does not drop privileges when creating socket/statistics temporary directoriesmore details

181+deb9u3
Affected by 2 other vulnerabilities.

200+deb10u5
Affected by 1 other vulnerability.

225+deb11u1
Affected by 0 other vulnerabilities.

VCID-fu9y-ve85-93a6
Aliases:
CVE-2017-8806

165+deb8u3
Affected by 3 other vulnerabilities.

181+deb9u3
Affected by 2 other vulnerabilities.

200+deb10u5
Affected by 1 other vulnerability.

VCID-yy9q-5kjq-bfe9
Aliases:
CVE-2016-1255

181+deb9u1~bpo8+1
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T18:35:58.762446+00:00	Debian Oval Importer	Affected by	VCID-yy9q-5kjq-bfe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:49:42.981275+00:00	Debian Oval Importer	Affected by	VCID-fu9y-ve85-93a6	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:33:20.232850+00:00	Debian Oval Importer	Affected by	VCID-frpw-pnca-fya4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T11:33:03.785511+00:00	Debian Oval Importer	Affected by	VCID-frpw-pnca-fya4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	37.0.0
2025-08-01T11:06:23.671234+00:00	Debian Oval Importer	Affected by	VCID-fu9y-ve85-93a6	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	37.0.0
2025-08-01T10:56:25.519752+00:00	Debian Oval Importer	Affected by	VCID-frpw-pnca-fya4	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	37.0.0
2025-08-01T10:32:40.166401+00:00	Debian Oval Importer	Affected by	VCID-fu9y-ve85-93a6	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0