DSA-4028-1 postgresql-9.6 -- postgresql-9.6ID: oval:org.secpod.oval:def:603166 | Date: (C)2017-12-04 (M)2023-12-20 |
Class: PATCH | Family: unix |
Several vulnerabilities have been found in the PostgreSQL database system: CVE-2017-15098 Denial of service and potential memory disclosure in the json_populate_recordset and jsonb_populate_recordset functions CVE-2017-15099 Insufficient permissions checks in "INSERT ... ON CONFLICT DO UPDATE" statements.
Product: |
postgresql-plpython3-9.6 |
postgresql-doc-9.6 |
postgresql-plpython-9.6 |
postgresql-9.6 |
postgresql-server-dev-9.6 |
libecpg6 |
postgresql-client-9.6 |
libpq-dev |
postgresql-contrib-9.6 |
libpgtypes3 |
libecpg-dev |
postgresql-pltcl-9.6 |
libpq5 |
postgresql-plperl-9.6 |
libecpg-compat3 |