Medium severity5.5NVD Advisory· Published Nov 13, 2017· Updated Jun 17, 2026
CVE-2017-8806
CVE-2017-8806
Description
The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster scripts, as distributed in the Debian postgresql-common package before 181+deb9u1 for PostgreSQL (and other packages related to Debian and Ubuntu), handled symbolic links insecurely, which could result in local denial of service by overwriting arbitrary files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
217- cpe:2.3:a:postgresql:postgresql:-:*:*:*:*:*:*:*
- osv-coords216 versionspkg:apk/chainguard/ecpg-13pkg:apk/chainguard/ecpg-14pkg:apk/chainguard/ecpg-15pkg:apk/chainguard/ecpg-16pkg:apk/chainguard/ecpg-17pkg:apk/chainguard/ecpg-18pkg:apk/chainguard/libecpg-12pkg:apk/chainguard/libecpg-13pkg:apk/chainguard/libecpg-13-devpkg:apk/chainguard/libecpg-14pkg:apk/chainguard/libecpg-14-devpkg:apk/chainguard/libecpg-15pkg:apk/chainguard/libecpg-15-devpkg:apk/chainguard/libecpg-16pkg:apk/chainguard/libecpg-16-devpkg:apk/chainguard/libecpg-17pkg:apk/chainguard/libecpg-17-devpkg:apk/chainguard/libecpg-18pkg:apk/chainguard/libecpg-18-devpkg:apk/chainguard/libpq-11pkg:apk/chainguard/libpq-12pkg:apk/chainguard/libpq-13pkg:apk/chainguard/libpq-14pkg:apk/chainguard/libpq-15pkg:apk/chainguard/libpq-16pkg:apk/chainguard/libpq-17pkg:apk/chainguard/libpq-18pkg:apk/chainguard/neonpkg:apk/chainguard/postgresql-11pkg:apk/chainguard/postgresql-11-bitnami-compatpkg:apk/chainguard/postgresql-11-clientpkg:apk/chainguard/postgresql-11-contribpkg:apk/chainguard/postgresql-11-devpkg:apk/chainguard/postgresql-11-oci-entrypointpkg:apk/chainguard/postgresql-12pkg:apk/chainguard/postgresql-12-basepkg:apk/chainguard/postgresql-12-bitnami-compatpkg:apk/chainguard/postgresql-12-clientpkg:apk/chainguard/postgresql-12-client-basepkg:apk/chainguard/postgresql-12-contribpkg:apk/chainguard/postgresql-12-devpkg:apk/chainguard/postgresql-12-oci-entrypointpkg:apk/chainguard/postgresql-12-oci-entrypoint-basepkg:apk/chainguard/postgresql-12-pgadmin-compatpkg:apk/chainguard/postgresql-13pkg:apk/chainguard/postgresql-13-basepkg:apk/chainguard/postgresql-13-bitnami-compatpkg:apk/chainguard/postgresql-13-clientpkg:apk/chainguard/postgresql-13-client-basepkg:apk/chainguard/postgresql-13-contribpkg:apk/chainguard/postgresql-13-devpkg:apk/chainguard/postgresql-13-oci-entrypointpkg:apk/chainguard/postgresql-13-oci-entrypoint-basepkg:apk/chainguard/postgresql-13-pgadmin-compatpkg:apk/chainguard/postgresql-14pkg:apk/chainguard/postgresql-14-basepkg:apk/chainguard/postgresql-14-bitnami-compatpkg:apk/chainguard/postgresql-14-clientpkg:apk/chainguard/postgresql-14-client-basepkg:apk/chainguard/postgresql-14-contribpkg:apk/chainguard/postgresql-14-devpkg:apk/chainguard/postgresql-14-oci-entrypointpkg:apk/chainguard/postgresql-14-oci-entrypoint-basepkg:apk/chainguard/postgresql-14-pgadmin-compatpkg:apk/chainguard/postgresql-15pkg:apk/chainguard/postgresql-15-basepkg:apk/chainguard/postgresql-15-bitnami-compatpkg:apk/chainguard/postgresql-15-clientpkg:apk/chainguard/postgresql-15-client-basepkg:apk/chainguard/postgresql-15-contribpkg:apk/chainguard/postgresql-15-devpkg:apk/chainguard/postgresql-15-oci-entrypointpkg:apk/chainguard/postgresql-15-oci-entrypoint-basepkg:apk/chainguard/postgresql-15-pgadmin-compatpkg:apk/chainguard/postgresql-16pkg:apk/chainguard/postgresql-16-basepkg:apk/chainguard/postgresql-16-clientpkg:apk/chainguard/postgresql-16-client-basepkg:apk/chainguard/postgresql-16-contribpkg:apk/chainguard/postgresql-16-devpkg:apk/chainguard/postgresql-16-oci-entrypointpkg:apk/chainguard/postgresql-16-oci-entrypoint-basepkg:apk/chainguard/postgresql-16-pgadmin-compatpkg:apk/chainguard/postgresql-17pkg:apk/chainguard/postgresql-17-basepkg:apk/chainguard/postgresql-17-clientpkg:apk/chainguard/postgresql-17-client-basepkg:apk/chainguard/postgresql-17-contribpkg:apk/chainguard/postgresql-17-devpkg:apk/chainguard/postgresql-17-oci-entrypointpkg:apk/chainguard/postgresql-17-oci-entrypoint-basepkg:apk/chainguard/postgresql-17-pgadmin-compatpkg:apk/chainguard/postgresql-18pkg:apk/chainguard/postgresql-18-basepkg:apk/chainguard/postgresql-18-clientpkg:apk/chainguard/postgresql-18-client-basepkg:apk/chainguard/postgresql-18-contribpkg:apk/chainguard/postgresql-18-devpkg:apk/chainguard/postgresql-18-oci-entrypointpkg:apk/chainguard/postgresql-18-oci-entrypoint-basepkg:apk/chainguard/postgresql-18-pgadmin-compatpkg:apk/chainguard/py3.10-plpythonpkg:apk/chainguard/py3.10-plpython-17pkg:apk/chainguard/py3.10-plpython-18pkg:apk/chainguard/py3.11-plpythonpkg:apk/chainguard/py3.11-plpython-17pkg:apk/chainguard/py3.11-plpython-18pkg:apk/chainguard/py3.12-plpythonpkg:apk/chainguard/py3.12-plpython-17pkg:apk/chainguard/py3.12-plpython-18pkg:apk/chainguard/py3.13-plpythonpkg:apk/chainguard/py3.13-plpython-17pkg:apk/chainguard/py3.13-plpython-18pkg:apk/wolfi/ecpg-16pkg:apk/wolfi/ecpg-17pkg:apk/wolfi/ecpg-18pkg:apk/wolfi/libecpg-12pkg:apk/wolfi/libecpg-13pkg:apk/wolfi/libecpg-14pkg:apk/wolfi/libecpg-15pkg:apk/wolfi/libecpg-16pkg:apk/wolfi/libecpg-16-devpkg:apk/wolfi/libecpg-17pkg:apk/wolfi/libecpg-17-devpkg:apk/wolfi/libecpg-18pkg:apk/wolfi/libecpg-18-devpkg:apk/wolfi/libpq-11pkg:apk/wolfi/libpq-12pkg:apk/wolfi/libpq-13pkg:apk/wolfi/libpq-14pkg:apk/wolfi/libpq-15pkg:apk/wolfi/libpq-16pkg:apk/wolfi/libpq-17pkg:apk/wolfi/libpq-18pkg:apk/wolfi/neonpkg:apk/wolfi/postgresql-11pkg:apk/wolfi/postgresql-11-bitnami-compatpkg:apk/wolfi/postgresql-11-clientpkg:apk/wolfi/postgresql-11-contribpkg:apk/wolfi/postgresql-11-devpkg:apk/wolfi/postgresql-11-oci-entrypointpkg:apk/wolfi/postgresql-12pkg:apk/wolfi/postgresql-12-basepkg:apk/wolfi/postgresql-12-bitnami-compatpkg:apk/wolfi/postgresql-12-clientpkg:apk/wolfi/postgresql-12-client-basepkg:apk/wolfi/postgresql-12-contribpkg:apk/wolfi/postgresql-12-devpkg:apk/wolfi/postgresql-12-oci-entrypointpkg:apk/wolfi/postgresql-12-oci-entrypoint-basepkg:apk/wolfi/postgresql-13pkg:apk/wolfi/postgresql-13-basepkg:apk/wolfi/postgresql-13-bitnami-compatpkg:apk/wolfi/postgresql-13-clientpkg:apk/wolfi/postgresql-13-client-basepkg:apk/wolfi/postgresql-13-contribpkg:apk/wolfi/postgresql-13-devpkg:apk/wolfi/postgresql-13-oci-entrypointpkg:apk/wolfi/postgresql-13-oci-entrypoint-basepkg:apk/wolfi/postgresql-14pkg:apk/wolfi/postgresql-14-basepkg:apk/wolfi/postgresql-14-bitnami-compatpkg:apk/wolfi/postgresql-14-clientpkg:apk/wolfi/postgresql-14-client-basepkg:apk/wolfi/postgresql-14-contribpkg:apk/wolfi/postgresql-14-devpkg:apk/wolfi/postgresql-14-oci-entrypointpkg:apk/wolfi/postgresql-14-oci-entrypoint-basepkg:apk/wolfi/postgresql-15pkg:apk/wolfi/postgresql-15-basepkg:apk/wolfi/postgresql-15-bitnami-compatpkg:apk/wolfi/postgresql-15-clientpkg:apk/wolfi/postgresql-15-client-basepkg:apk/wolfi/postgresql-15-contribpkg:apk/wolfi/postgresql-15-devpkg:apk/wolfi/postgresql-15-oci-entrypointpkg:apk/wolfi/postgresql-15-oci-entrypoint-basepkg:apk/wolfi/postgresql-16pkg:apk/wolfi/postgresql-16-basepkg:apk/wolfi/postgresql-16-clientpkg:apk/wolfi/postgresql-16-client-basepkg:apk/wolfi/postgresql-16-contribpkg:apk/wolfi/postgresql-16-devpkg:apk/wolfi/postgresql-16-oci-entrypointpkg:apk/wolfi/postgresql-16-oci-entrypoint-basepkg:apk/wolfi/postgresql-16-pgadmin-compatpkg:apk/wolfi/postgresql-17pkg:apk/wolfi/postgresql-17-basepkg:apk/wolfi/postgresql-17-clientpkg:apk/wolfi/postgresql-17-client-basepkg:apk/wolfi/postgresql-17-contribpkg:apk/wolfi/postgresql-17-devpkg:apk/wolfi/postgresql-17-oci-entrypointpkg:apk/wolfi/postgresql-17-oci-entrypoint-basepkg:apk/wolfi/postgresql-17-pgadmin-compatpkg:apk/wolfi/postgresql-18pkg:apk/wolfi/postgresql-18-basepkg:apk/wolfi/postgresql-18-clientpkg:apk/wolfi/postgresql-18-client-basepkg:apk/wolfi/postgresql-18-contribpkg:apk/wolfi/postgresql-18-devpkg:apk/wolfi/postgresql-18-oci-entrypointpkg:apk/wolfi/postgresql-18-oci-entrypoint-basepkg:apk/wolfi/postgresql-18-pgadmin-compatpkg:apk/wolfi/py3.10-plpythonpkg:apk/wolfi/py3.10-plpython-17pkg:apk/wolfi/py3.10-plpython-18pkg:apk/wolfi/py3.11-plpythonpkg:apk/wolfi/py3.11-plpython-17pkg:apk/wolfi/py3.11-plpython-18pkg:apk/wolfi/py3.12-plpythonpkg:apk/wolfi/py3.12-plpython-17pkg:apk/wolfi/py3.12-plpython-18pkg:apk/wolfi/py3.13-plpythonpkg:apk/wolfi/py3.13-plpython-17pkg:apk/wolfi/py3.13-plpython-18
< 13.20-r0+ 215 more
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 13.23-r2
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.20-r2
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 13.23-r2
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 13.20-r0
- (no CPE)range: < 14.20-r2
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 14.17-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 18.1-r0
Patches
Vulnerability mechanics
References
4- metadata.ftp-master.debian.org/changelogs/main/p/postgresql-common/postgresql-common_181+deb9u1_changelognvdBroken LinkIssue TrackingThird Party Advisory
- www.securityfocus.com/bid/101810nvdBroken LinkThird Party AdvisoryVDB Entry
- usn.ubuntu.com/usn/usn-3476-1/nvdIssue TrackingThird Party Advisory
- www.debian.org/security/2017/dsa-4029nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.