[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

RHSA-2020:3669-01 -- Redhat postgresql

ID: oval:org.secpod.oval:def:66574Date: (C)2020-10-30   (M)2023-01-30
Class: PATCHFamily: unix




PostgreSQL is an advanced object-relational database management system . The following packages have been upgraded to a later upstream version: postgresql . Security Fix: * postgresql: Stack-based buffer overflow via setting a password * postgresql: TYPE in pg_temp executes arbitrary SQL during SECURITY DEFINER execution * postgresql: Uncontrolled search path element in logical replication * postgresql: Uncontrolled search path element in CREATE EXTENSION * postgresql: Selectivity estimators bypass row security policies * postgresql: ALTER ... DEPENDS ON EXTENSION is missing authorization checks For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Bug Fix: * Module stream postgresql:10 does not have correct module.md file

Platform:
CentOS 8
Product:
postgresql
Reference:
RHSA-2020:3669-01
CVE-2019-10130
CVE-2019-10164
CVE-2019-10208
CVE-2020-1720
CVE-2020-14349
CVE-2020-14350
CVE    6
CVE-2020-14349
CVE-2020-14350
CVE-2020-1720
CVE-2019-10130
...
CPE    2
cpe:/a:postgresql:postgresql
cpe:/o:centos:centos:8

© SecPod Technologies