Search CVE reports
71 – 80 of 80 results
CVE-2014-8161
Medium prioritySome fixes available 5 of 6
PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading...
4 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3, postgresql-9.4
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | Not in release |
postgresql-9.1 | — | — | — | — | Not in release |
postgresql-9.3 | — | — | — | — | Not in release |
postgresql-9.4 | — | — | — | — | Not in release |
CVE-2014-2669
Medium priorityMultiple integer overflows in contrib/hstore/hstore_io.c in PostgreSQL 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact via vectors...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0067
Low prioritySome fixes available 5 of 7
The "make check" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0066
Medium priorityThe chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library function, which allows remote...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0065
Medium priorityMultiple buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors,...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0064
Medium priorityMultiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0063
Medium priorityMultiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0062
Medium priorityRace condition in the (1) CREATE INDEX and (2) unspecified ALTER TABLE commands in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allows remote authenticated users to...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0061
Medium priorityThe validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |
CVE-2014-0060
Medium priorityPostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or...
3 affected packages
postgresql-8.4, postgresql-9.1, postgresql-9.3
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
postgresql-8.4 | — | — | — | — | — |
postgresql-9.1 | — | — | — | — | — |
postgresql-9.3 | — | — | — | — | — |