PostgreSQL — свободная объектно-реляционная система управления базами данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 974
BDU:2023-03247
Уязвимость системы управления базами данных PostgreSQL, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код
SUSE-SU-2023:0705-1
Security update for postgresql14
GHSA-fr68-cm8v-7vv6
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
CVE-2022-41862
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
CVE-2022-41862
In PostgreSQL, a modified, unauthenticated server can send an untermin ...
CVE-2022-41862
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes.
SUSE-SU-2023:0583-1
Security update for postgresql13
SUSE-SU-2023:0569-1
Security update for postgresql15
SUSE-SU-2023:0479-1
Security update for postgresql12
SUSE-SU-2023:0450-1
Security update for postgresql12
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | BDU:2023-03247 Уязвимость системы управления базами данных PostgreSQL, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код | CVSS3: 7.2 | 0% Низкий | больше 2 лет назад |
 | SUSE-SU-2023:0705-1 Security update for postgresql14 | 0% Низкий | больше 2 лет назад | |
| GHSA-fr68-cm8v-7vv6 In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes. | CVSS3: 3.7 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-41862 In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes. | CVSS3: 3.7 | 0% Низкий | больше 2 лет назад |
| CVE-2022-41862 In PostgreSQL, a modified, unauthenticated server can send an untermin ... | CVSS3: 3.7 | 0% Низкий | больше 2 лет назад |
 | CVE-2022-41862 In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport encryption. In certain conditions a server can cause a libpq client to over-read and report an error message containing uninitialized bytes. | CVSS3: 3.7 | 0% Низкий | больше 2 лет назад |
| SUSE-SU-2023:0583-1 Security update for postgresql13 | 0% Низкий | больше 2 лет назад | |
| SUSE-SU-2023:0569-1 Security update for postgresql15 | 0% Низкий | больше 2 лет назад | |
| SUSE-SU-2023:0479-1 Security update for postgresql12 | 0% Низкий | больше 2 лет назад | |
| SUSE-SU-2023:0450-1 Security update for postgresql12 | 0% Низкий | больше 2 лет назад |
Уязвимостей на страницу