ALAS-2017-931 ---- postgresql92 postgresql93 postgresql94ID: oval:org.secpod.oval:def:1600811 | Date: (C)2017-12-12 (M)2021-11-15 |
Class: PATCH | Family: unix |
Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.Invalid json_populate_recordset or jsonb_populate_recordset function calls in PostgreSQL can crash the server or disclose a few bytes of server memory.
Platform: |
Amazon Linux AMI |
Product: |
postgresql92 |
postgresql93 |
postgresql94 |