PostgreSQL — свободная объектно-реляционная система управления базами данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 974
openSUSE-SU-2018:4007-1
Security update for postgresql94
SUSE-SU-2018:3942-1
Security update for postgresql10
SUSE-SU-2018:3909-1
Security update for postgresql94
openSUSE-SU-2018:3893-1
Security update for postgresql10
SUSE-SU-2018:3770-1
Security update for postgresql10
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL inject ...
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
CVE-2018-16850
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.
SUSE-SU-2018:3287-1
Security update for postgresql94
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | openSUSE-SU-2018:4007-1 Security update for postgresql94 | 2% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3942-1 Security update for postgresql10 | 2% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3909-1 Security update for postgresql94 | 2% Низкий | почти 7 лет назад | |
| openSUSE-SU-2018:3893-1 Security update for postgresql10 | 2% Низкий | почти 7 лет назад | |
| SUSE-SU-2018:3770-1 Security update for postgresql10 | 2% Низкий | почти 7 лет назад | |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 9.8 | 2% Низкий | почти 7 лет назад |
| CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL inject ... | CVSS3: 9.8 | 2% Низкий | почти 7 лет назад |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 9.8 | 2% Низкий | почти 7 лет назад |
 | CVE-2018-16850 postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. | CVSS3: 8 | 2% Низкий | около 7 лет назад |
| SUSE-SU-2018:3287-1 Security update for postgresql94 | 2% Низкий | около 7 лет назад |
Уязвимостей на страницу