Search for packages
| purl | pkg:generic/postgresql@8.4.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-2jth-1dr6-aaam
Aliases: CVE-2010-1170 |
CVE-2010-1170 PostgreSQL: PL/Tcl Intended restriction bypass |
Affected by 0 other vulnerabilities. |
|
VCID-3bpd-gr68-aaar
Aliases: CVE-2009-4136 |
CVE-2009-4136 postgresql: SQL privilege escalation via modifications to session-local state |
Affected by 0 other vulnerabilities. |
|
VCID-5m2y-3z62-aaan
Aliases: CVE-2010-3433 |
CVE-2010-3433 PostgreSQL (PL/Perl, PL/Tcl): SECURITY DEFINER function keyword bypass |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-66pw-s4p5-aaaq
Aliases: CVE-2013-1900 |
CVE-2013-1900 postgresql: Improper randomization of pgcrypto functions (requiring random seed) |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-6r74-sdx2-aaap
Aliases: CVE-2012-3488 |
CVE-2012-3488 postgresql (xml2 contrib module): XXE by applying XSL stylesheet to the document |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8n93-82rr-aaaj
Aliases: CVE-2012-3489 |
CVE-2012-3489 postgresql: File disclosure through XXE in xmlparse by DTD validation |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8q3w-ss4x-aaah
Aliases: CVE-2014-0066 |
CVE-2014-0066 postgresql: NULL pointer dereference |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-8qaz-t2ph-aaae
Aliases: CVE-2012-0866 |
CVE-2012-0866 postgresql: Absent permission checks on trigger function to be called when creating a trigger |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-cybw-rp3f-aaaa
Aliases: CVE-2014-0060 |
CVE-2014-0060 postgresql: SET ROLE without ADMIN OPTION allows adding and removing group members |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-dd13-v3tv-aaar
Aliases: CVE-2009-4034 |
CVE-2009-4034 postgresql: incorrect verification of SSL certificates with NUL in name |
Affected by 0 other vulnerabilities. |
|
VCID-eyt5-7axd-aaad
Aliases: CVE-2014-0064 |
CVE-2014-0064 postgresql: integer overflows leading to buffer overflows |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-fr59-r26d-aaaa
Aliases: CVE-2012-2655 |
CVE-2012-2655 postgresql: Ability of database owners to install procedural languages via CREATE LANGUAGE found unsafe (DoS) |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-gjry-6tsg-aaam
Aliases: CVE-2012-0867 |
CVE-2012-0867 postgresql: MITM due improper x509_v3 CN validation during certificate verification |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-hg1y-vzy7-aaac
Aliases: CVE-2013-0255 |
CVE-2013-0255 postgresql: array indexing error in enum_recv() |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-k28d-v33s-aaan
Aliases: CVE-2009-3229 |
CVE-2009-3229 postgresql: authenticated user server DoS via plugin re-LOAD-ing |
Affected by 0 other vulnerabilities. |
|
VCID-u93g-y8jd-aaaj
Aliases: CVE-2014-0061 |
The validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a function that is (1) defined in another language or (2) not allowed to be directly called by the user due to permissions. |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-v8kp-gquz-aaab
Aliases: CVE-2014-0062 |
CVE-2014-0062 postgresql: CREATE INDEX race condition possibly leading to privilege escalation |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-vkdr-1ajs-aaaa
Aliases: CVE-2010-1169 |
CVE-2010-1169 PostgreSQL: PL/Perl Intended restriction bypass |
Affected by 0 other vulnerabilities. |
|
VCID-vvas-6q5w-aaaq
Aliases: CVE-2010-4015 |
CVE-2010-4015 PostgreSQL: Stack-based buffer overflow by processing certain tokens from SQL query string when intarray module enabled |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-w6z5-afev-aaam
Aliases: CVE-2009-3230 |
CVE-2009-3230 postgresql: SQL privilege escalation, incomplete fix for CVE-2007-6600 |
Affected by 0 other vulnerabilities. |
|
VCID-x2b5-v14x-aaac
Aliases: CVE-2012-0868 |
CVE-2012-0868 postgresql: SQL injection due unsanitized newline characters in object names |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-xw9y-75mb-aaad
Aliases: CVE-2014-0065 |
CVE-2014-0065 postgresql: possible buffer overflow flaws |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-xzy3-8e53-aaaf
Aliases: CVE-2010-1975 |
CVE-2010-1975 postgresql: improper privilege check during certain RESET ALL operations |
Affected by 0 other vulnerabilities. |
|
VCID-yx6b-4sm1-aaag
Aliases: CVE-2014-0063 |
CVE-2014-0063 postgresql: stack-based buffer overflow in datetime input/output |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-zjq7-knwv-aaar
Aliases: CVE-2012-2143 |
CVE-2012-2143 BSD crypt(): DES encrypted password weakness |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||