PostgreSQL — свободная объектно-реляционная система управления базами данных.
Релизный цикл, информация об уязвимостях
График релизов
Количество 1 017
openSUSE-SU-2018:0688-1
Security update for postgresql94
SUSE-SU-2018:0675-1
Security update for postgresql94
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the be ...
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
CVE-2017-14798
A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.
CVE-2017-14798
A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected.
BDU:2019-01829
Уязвимость системы управления базами данных PostgreSQL, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код
openSUSE-SU-2018:0523-1
Security update for postgresql96
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | openSUSE-SU-2018:0688-1 Security update for postgresql94 | 0% Низкий | около 8 лет назад | |
| SUSE-SU-2018:0675-1 Security update for postgresql94 | 0% Низкий | около 8 лет назад | |
 | CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected. | CVSS3: 8.8 | 83% Высокий | около 8 лет назад |
| CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the be ... | CVSS3: 8.8 | 83% Высокий | около 8 лет назад |
 | CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected. | CVSS3: 8.8 | 83% Высокий | около 8 лет назад |
| CVE-2017-14798 A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root. | CVSS3: 7.3 | 1% Низкий | около 8 лет назад |
| CVE-2017-14798 A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root. | CVSS3: 7.3 | 1% Низкий | около 8 лет назад |
 | CVE-2018-1058 A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected. | CVSS3: 8.8 | 83% Высокий | около 8 лет назад |
 | BDU:2019-01829 Уязвимость системы управления базами данных PostgreSQL, связанная с недостатками разграничения доступа, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код | CVSS3: 8.8 | 83% Высокий | около 8 лет назад |
| openSUSE-SU-2018:0523-1 Security update for postgresql96 | 0% Низкий | около 8 лет назад |
Уязвимостей на страницу