VulnerableCode Package Details - pkg:generic/postgresql@9.4.13

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2puf-bcqt-aaar	PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.	CVE-2017-7548
VCID-e9bb-mncs-aaae	PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password.	CVE-2017-7546
VCID-vy3s-zrxr-aaah	PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.	CVE-2017-7547

Vulnerability

Summary

Aliases

VCID-2puf-bcqt-aaar

PostgreSQL versions before 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers with no privileges on a large object to overwrite the entire contents of the object, resulting in a denial of service.

CVE-2017-7548

VCID-e9bb-mncs-aaae

PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to incorrect authentication flaw allowing remote attackers to gain access to database accounts with an empty password.

CVE-2017-7546

VCID-vy3s-zrxr-aaah

PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.

CVE-2017-7547

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:42:15.039664+00:00	PostgreSQL Importer	Fixing	VCID-e9bb-mncs-aaae	https://www.postgresql.org/support/security/CVE-2017-7546	36.0.0
2025-03-28T07:42:14.858368+00:00	PostgreSQL Importer	Fixing	VCID-vy3s-zrxr-aaah	https://www.postgresql.org/support/security/CVE-2017-7547	36.0.0
2025-03-28T07:42:14.745890+00:00	PostgreSQL Importer	Fixing	VCID-2puf-bcqt-aaar	https://www.postgresql.org/support/security/CVE-2017-7548	36.0.0
2024-09-18T01:54:40.019565+00:00	PostgreSQL Importer	Fixing	VCID-e9bb-mncs-aaae	https://www.postgresql.org/support/security/CVE-2017-7546	34.0.1
2024-09-18T01:54:39.842251+00:00	PostgreSQL Importer	Fixing	VCID-vy3s-zrxr-aaah	https://www.postgresql.org/support/security/CVE-2017-7547	34.0.1
2024-09-18T01:54:39.728135+00:00	PostgreSQL Importer	Fixing	VCID-2puf-bcqt-aaar	https://www.postgresql.org/support/security/CVE-2017-7548	34.0.1
2024-01-03T22:23:13.385234+00:00	PostgreSQL Importer	Fixing	VCID-2puf-bcqt-aaar	https://www.postgresql.org/support/security/CVE-2017-7548	34.0.0rc1
2024-01-03T22:22:53.323174+00:00	PostgreSQL Importer	Fixing	VCID-e9bb-mncs-aaae	https://www.postgresql.org/support/security/CVE-2017-7546	34.0.0rc1
2024-01-03T22:22:53.149091+00:00	PostgreSQL Importer	Fixing	VCID-vy3s-zrxr-aaah	https://www.postgresql.org/support/security/CVE-2017-7547	34.0.0rc1