Описание
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | released | 8.4.22-0ubuntu0.10.04.1 |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | ignored | end of life |
| utopic | DNE | |
| vivid | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [9.1.15-0ubuntu0.14.04]] |
| lucid | DNE | |
| precise | released | 9.1.15-0ubuntu0.12.04 |
| precise/esm | not-affected | 9.1.15-0ubuntu0.12.04 |
| trusty | released | 9.1.15-0ubuntu0.14.04 |
| trusty/esm | DNE | trusty was released [9.1.15-0ubuntu0.14.04] |
| upstream | released | 9.1.11-2 |
| utopic | DNE | |
| vivid | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | released | 9.3.6-0ubuntu0.14.04 |
| lucid | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 9.3.6-0ubuntu0.14.04 |
| trusty/esm | released | 9.3.6-0ubuntu0.14.04 |
| upstream | released | 9.3.6 |
| utopic | DNE | |
| vivid | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 9.4.1-1 |
| utopic | released | 9.4.1-0ubuntu0.14.10 |
| vivid | not-affected | 9.4.1-1 |
Показывать по
4 Medium
CVSS2
4.3 Medium
CVSS3
Связанные уязвимости
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9. ...
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.
4 Medium
CVSS2
4.3 Medium
CVSS3