PostgreSQL — свободная объектно-реляционная система управления базами данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 970
SUSE-SU-2018:1695-1
Security update for postgresql96
CVE-2018-1115
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.
CVE-2018-1115
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack ...
CVE-2018-1115
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.
CVE-2018-1115
postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation.
BDU:2019-04242
Уязвимость функции pg_catalog.pg_logfile_rotate() модуля adminpack системы управления базами данных PostgreSQL, позволяющая нарушителю оказать воздействие на целостность защищаемой информации или вызвать отказ в обслуживании
openSUSE-SU-2018:0890-1
Security update for postgresql94
SUSE-SU-2018:0876-1
Security update for postgresql94
openSUSE-SU-2018:0765-1
Security update for postgresql96
SUSE-SU-2018:0756-1
Security update for postgresql96
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | SUSE-SU-2018:1695-1 Security update for postgresql96 | 0% Низкий | около 7 лет назад | |
 | CVE-2018-1115 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation. | CVSS3: 9.1 | 0% Низкий | около 7 лет назад |
| CVE-2018-1115 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack ... | CVSS3: 9.1 | 0% Низкий | около 7 лет назад |
 | CVE-2018-1115 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation. | CVSS3: 9.1 | 0% Низкий | около 7 лет назад |
 | CVE-2018-1115 postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack extension, the pg_catalog.pg_logfile_rotate() function doesn't follow the same ACLs than pg_rorate_logfile. If the adminpack is added to a database, an attacker able to connect to it could exploit this to force log rotation. | CVSS3: 4.2 | 0% Низкий | около 7 лет назад |
 | BDU:2019-04242 Уязвимость функции pg_catalog.pg_logfile_rotate() модуля adminpack системы управления базами данных PostgreSQL, позволяющая нарушителю оказать воздействие на целостность защищаемой информации или вызвать отказ в обслуживании | CVSS3: 9.1 | 0% Низкий | около 7 лет назад |
| openSUSE-SU-2018:0890-1 Security update for postgresql94 | 80% Высокий | больше 7 лет назад | |
| SUSE-SU-2018:0876-1 Security update for postgresql94 | 80% Высокий | больше 7 лет назад | |
| openSUSE-SU-2018:0765-1 Security update for postgresql96 | 80% Высокий | больше 7 лет назад | |
| SUSE-SU-2018:0756-1 Security update for postgresql96 | 80% Высокий | больше 7 лет назад |
Уязвимостей на страницу