rpm package
suse/postgresql10-libs&distro=SUSE Linux Enterprise Desktop 12 SP3
pkg:rpm/suse/postgresql10-libs&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-10130 | — | < 10.8-1.9.1 | 10.8-1.9.1 | Jul 30, 2019 | A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common | ||
| CVE-2018-16850 | — | < 10.6-1.6.1 | 10.6-1.6.1 | Nov 13, 2018 | postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges. |
- CVE-2019-10130Jul 30, 2019affected < 10.8-1.9.1fixed 10.8-1.9.1
A vulnerability was found in PostgreSQL versions 11.x up to excluding 11.3, 10.x up to excluding 10.8, 9.6.x up to, excluding 9.6.13, 9.5.x up to, excluding 9.5.17. PostgreSQL maintains column statistics for tables. Certain statistics, such as histograms and lists of most common
- CVE-2018-16850Nov 13, 2018affected < 10.6-1.6.1fixed 10.6-1.6.1
postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.