Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2016-0766

Опубликовано: 17 фев. 2016
Источник: debian

Описание

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
postgresql-9.5fixed9.5.1package
postgresql-9.4unfixedpackage
postgresql-9.1removedpackage
postgresql-9.1not-affectedjessiepackage

Связанные уязвимости

ubuntu логотип

CVE-2016-0766

CVSS3: 8.8
ubuntu
почти 10 лет назад

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

nvd логотип

CVE-2016-0766

CVSS3: 8.8
nvd
почти 10 лет назад

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

github логотип

GHSA-cr7c-24h8-pv37

CVSS3: 8.8
github
больше 3 лет назад

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

fstec логотип

BDU:2016-00663

fstec
почти 10 лет назад

Уязвимость операционных систем Debian GNU/Linux и Ubuntu, системы управления базами данных PostgreSQL, позволяющая нарушителю повысить свои привилегии

suse-cvrf логотип

openSUSE-SU-2016:0578-1

suse-cvrf
почти 10 лет назад

Security update for postgresql94