rpm package
suse/postgresql96-libs&distro=SUSE Enterprise Storage 5
pkg:rpm/suse/postgresql96-libs&distro=SUSE%20Enterprise%20Storage%205
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-1720 | — | < 9.6.17-3.33.1 | 9.6.17-3.33.1 | Mar 17, 2020 | A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION", where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function, triggers, et al., leading to database corr | ||
| CVE-2019-10208 | — | < 9.6.15-3.29.1 | 9.6.15-3.29.1 | Oct 29, 2019 | A flaw was discovered in postgresql versions 9.4.x before 9.4.24, 9.5.x before 9.5.19, 9.6.x before 9.6.15, 10.x before 10.10 and 11.x before 11.5 where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function. An attacker, with EXECUTE permission on th |
- CVE-2020-1720Mar 17, 2020affected < 9.6.17-3.33.1fixed 9.6.17-3.33.1
A flaw was found in PostgreSQL's "ALTER ... DEPENDS ON EXTENSION", where sub-commands did not perform authorization checks. An authenticated attacker could use this flaw in certain configurations to perform drop objects such as function, triggers, et al., leading to database corr
- CVE-2019-10208Oct 29, 2019affected < 9.6.15-3.29.1fixed 9.6.15-3.29.1
A flaw was discovered in postgresql versions 9.4.x before 9.4.24, 9.5.x before 9.5.19, 9.6.x before 9.6.15, 10.x before 10.10 and 11.x before 11.5 where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function. An attacker, with EXECUTE permission on th