Download
| Alert*
oval:org.secpod.oval:def:201713
PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:200047 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:201897 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:700100 It was discovered that PostgreSQL did not properly enforce permissions within sessions when PL/Perl and PL/Tcl functions or operators were redefined. A remote authenticated attacker could exploit this to execute arbitrary code with permissions of a different user, possibly leading to privilege escal ... oval:org.secpod.oval:def:700069 USN-1002-1 fixed vulnerabilities in PostgreSQL. This update provides the corresponding update for Ubuntu 10.10. Original advisory details: It was discovered that PostgreSQL did not properly enforce permissions within sessions when PL/Perl and PL/Tcl functions or operators were redefined. A remote au ... oval:org.secpod.oval:def:201907 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:201875 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.mitre.oval:def:7291 The host is installed with PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, or 9.0 before 9.0.1 and is prone to privilege escalation vulnerability. A flaw is present in the application, which fails to properly protect script ... oval:org.secpod.oval:def:600114 Tim Bunce discovered that PostgreSQL, a database server software, does not properly separate interpreters for server-side stored procedures which run in different security contexts. As a result, non-privileged authenticated database users might gain additional privileges. Note that this security upd ... oval:org.secpod.oval:def:300370 Multiple vulnerabilities was discovered and corrected in postgresql: An authenticated database user can manipulate modules and tied variables in some external procedural languages to execute code with enhanced privileges . Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Pr ... oval:org.secpod.oval:def:500460 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:500465 PostgreSQL is an advanced object-relational database management system . PL/Perl and PL/Tcl allow users to write PostgreSQL functions in the Perl and Tcl languages. The PostgreSQL SECURITY DEFINER parameter, which can be used when creating a new PostgreSQL function, specifies that the function will ... oval:org.secpod.oval:def:100015 Security Enhanced PostgreSQL is an extension of PostgreSQL based on SELinux security policy, that applies fine grained mandatory access control to many objects within the database, and takes advantage of user authorization integrated within the operating system. SE-PostgreSQL works as a userspace re ... oval:org.secpod.oval:def:100041 PostgreSQL is an advanced Object-Relational database management system that supports almost all SQL constructs . The postgresql package includes the client programs and libraries that you"ll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipul ... oval:org.secpod.oval:def:100678 PostgreSQL is an advanced Object-Relational database management system that supports almost all SQL constructs . The postgresql package includes the client programs and libraries that you"ll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipul ... oval:org.secpod.oval:def:100180 PostgreSQL is an advanced Object-Relational database management system that supports almost all SQL constructs . The postgresql package includes the client programs and libraries that you"ll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipul ... oval:org.secpod.oval:def:101028 Security Enhanced PostgreSQL is an extension of PostgreSQL based on SELinux security policy, that applies fine grained mandatory access control to many objects within the database, and takes advantage of user authorization integrated within the operating system. SE-PostgreSQL works as a userspace re ... oval:org.secpod.oval:def:101224 PostgreSQL is an advanced Object-Relational database management system that supports almost all SQL constructs . The postgresql package includes the client programs and libraries that you"ll need to access a PostgreSQL DBMS server. These PostgreSQL client programs are programs that directly manipul ... |