PostgreSQL — свободная объектно-реляционная система управления базами данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 970
BDU:2021-05535
Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю реализовать атаку типа «человек посередине»
CVE-2021-32028
A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
CVE-2021-32028
A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO ...
CVE-2021-32028
A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
CVE-2021-32029
A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
CVE-2021-32029
A flaw was found in postgresql. Using an UPDATE ... RETURNING command ...
CVE-2021-32029
A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality.
openSUSE-SU-2021:3256-1
Security update for postgresql12
SUSE-SU-2021:3256-1
Security update for postgresql12
openSUSE-SU-2021:3255-1
Security update for postgresql13
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | BDU:2021-05535 Уязвимость библиотеки libpq системы управления базами данных PostgreSQL, позволяющая нарушителю реализовать атаку типа «человек посередине» | CVSS3: 3.7 | 0% Низкий | больше 3 лет назад |
 | CVE-2021-32028 A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality. | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
| CVE-2021-32028 A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO ... | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
 | CVE-2021-32028 A flaw was found in postgresql. Using an INSERT ... ON CONFLICT ... DO UPDATE command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality. | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
| CVE-2021-32029 A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality. | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
| CVE-2021-32029 A flaw was found in postgresql. Using an UPDATE ... RETURNING command ... | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
| CVE-2021-32029 A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality. | CVSS3: 6.5 | 0% Низкий | почти 4 года назад |
 | openSUSE-SU-2021:3256-1 Security update for postgresql12 | 0% Низкий | почти 4 года назад | |
| SUSE-SU-2021:3256-1 Security update for postgresql12 | 0% Низкий | почти 4 года назад | |
| openSUSE-SU-2021:3255-1 Security update for postgresql13 | 0% Низкий | почти 4 года назад |
Уязвимостей на страницу