Search CVE reports
21 – 30 of 44 results
CVE-2009-4136
Medium prioritySome fixes available 5 of 9
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a...
6 affected packages
postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3, postgresql-8.4
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-7.4 | — | — | — | — | — |
postgresql-8.0 | — | — | — | — | — |
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
postgresql-8.3 | — | — | — | — | — |
postgresql-8.4 | — | — | — | — | — |
CVE-2009-4034
Medium prioritySome fixes available 5 of 9
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN)...
6 affected packages
postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3, postgresql-8.4
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-7.4 | — | — | — | — | — |
postgresql-8.0 | — | — | — | — | — |
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
postgresql-8.3 | — | — | — | — | — |
postgresql-8.4 | — | — | — | — | — |
CVE-2009-0922
Medium prioritySome fixes available 3 of 8
PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a...
5 affected packages
postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-7.4 | — | — | — | — | — |
postgresql-8.0 | — | — | — | — | — |
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
postgresql-8.3 | — | — | — | — | — |
CVE-2007-6601
Unknown prioritySome fixes available 5 of 7
The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
CVE-2007-6600
Unknown prioritySome fixes available 5 of 7
PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
CVE-2007-6067
Unknown prioritySome fixes available 5 of 7
Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
CVE-2007-4769
Unknown prioritySome fixes available 5 of 7
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
CVE-2007-4772
Low prioritySome fixes available 5 of 17
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite...
5 affected packages
postgresql-8.1, postgresql-8.2, tcl8.3, tcl8.4, tcl8.5
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
tcl8.3 | — | — | — | — | — |
tcl8.4 | — | — | — | — | — |
tcl8.5 | — | — | — | — | — |
CVE-2007-3280
Unknown priorityThe Database Link library (dblink) in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |
CVE-2007-3279
Unknown priorityPostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions,...
2 affected packages
postgresql-8.1, postgresql-8.2
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.1 | — | — | — | — | — |
postgresql-8.2 | — | — | — | — | — |