Search CVE reports


Toggle filters

21 – 30 of 44 results


CVE-2009-4136

Medium priority

Some fixes available 5 of 9

PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a...

6 affected packages

postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3, postgresql-8.4

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-7.4
postgresql-8.0
postgresql-8.1
postgresql-8.2
postgresql-8.3
postgresql-8.4
Show less packages

CVE-2009-4034

Medium priority

Some fixes available 5 of 9

PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a ‘\0’ character in a domain name in the subject’s Common Name (CN)...

6 affected packages

postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3, postgresql-8.4

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-7.4
postgresql-8.0
postgresql-8.1
postgresql-8.2
postgresql-8.3
postgresql-8.4
Show less packages

CVE-2009-0922

Medium priority

Some fixes available 3 of 8

PostgreSQL before 8.3.7, 8.2.13, 8.1.17, 8.0.21, and 7.4.25 allows remote authenticated users to cause a denial of service (stack consumption and crash) by triggering a failure in the conversion of a localized error message to a...

5 affected packages

postgresql-7.4, postgresql-8.0, postgresql-8.1, postgresql-8.2, postgresql-8.3

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-7.4
postgresql-8.0
postgresql-8.1
postgresql-8.2
postgresql-8.3
Show less packages

CVE-2007-6601

Unknown priority

Some fixes available 5 of 7

The DBLink module in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21, when local trust or ident authentication is used, allows remote attackers to gain privileges via...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages

CVE-2007-6600

Unknown priority

Some fixes available 5 of 7

PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages

CVE-2007-6067

Unknown priority

Some fixes available 5 of 7

Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages

CVE-2007-4769

Unknown priority

Some fixes available 5 of 7

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages

CVE-2007-4772

Low priority

Some fixes available 5 of 17

The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite...

5 affected packages

postgresql-8.1, postgresql-8.2, tcl8.3, tcl8.4, tcl8.5

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
tcl8.3
tcl8.4
tcl8.5
Show less packages

CVE-2007-3280

Unknown priority
Not affected

The Database Link library (dblink) in PostgreSQL 8.1 implements functions via CREATE statements that map to arbitrary libraries based on the C programming language, which allows remote authenticated superusers to map and execute a...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages

CVE-2007-3279

Unknown priority
Not affected

PostgreSQL 8.1 and probably later versions, when the PL/pgSQL (plpgsql) language has been created, grants certain plpgsql privileges to the PUBLIC domain, which allows remote attackers to create and execute functions,...

2 affected packages

postgresql-8.1, postgresql-8.2

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
postgresql-8.1
postgresql-8.2
Show less packages