Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2009-4034 (GCVE-0-2009-4034)
Vulnerability from cvelistv5 – Published: 2009-12-15 18:00 – Updated: 2024-08-07 06:45
VLAI?
EPSS
Summary
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T06:45:51.064Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "61038",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/61038"
},
{
"name": "HPSBMU02781",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"name": "FEDORA-2009-13363",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/support/security.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"name": "20100307 rPSA-2010-0012-1 postgresql postgresql-contrib postgresql-server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"name": "SUSE-SR:2010:001",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"name": "FEDORA-2009-13381",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
},
{
"name": "1023325",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1023325"
},
{
"name": "MDVSA-2009:333",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"name": "37334",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/37334"
},
{
"name": "ADV-2009-3519",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"name": "37663",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/37663"
},
{
"name": "SSRT100617",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-12-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-10T18:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "61038",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/61038"
},
{
"name": "HPSBMU02781",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"name": "FEDORA-2009-13363",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/support/security.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"name": "20100307 rPSA-2010-0012-1 postgresql postgresql-contrib postgresql-server",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"name": "SUSE-SR:2010:001",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"name": "FEDORA-2009-13381",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
},
{
"name": "1023325",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1023325"
},
{
"name": "MDVSA-2009:333",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"name": "37334",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/37334"
},
{
"name": "ADV-2009-3519",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"name": "37663",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/37663"
},
{
"name": "SSRT100617",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2009-4034",
"datePublished": "2009-12-15T18:00:00",
"dateReserved": "2009-11-20T00:00:00",
"dateUpdated": "2024-08-07T06:45:51.064Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2009-4034\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2009-12-15T18:30:01.420\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.\"},{\"lang\":\"es\",\"value\":\"PostgreSQL v7.4.x anteriores a v7.4.27, v8.0.x anteriores a v8.0.23, v8.1.x anteriores a v8.1.19, v8.2.x anteriores a v8.2.15, v8.3.x anteriores a v8.3.9, y v8.4.x anteriores a v8.4.2 no maneja adecuadamente un caracter \u0027/0\u0027 en el nombre de dominio en el campo \\\"subject\\\" del Nombre Com\u00fan (CN) de un certificado X.509, lo que permite (1) a atacantes man-in-the-middle falsificar a conveniencia los servidores PostgreSQL basados en SSL a trav\u00e9s de un certificado de servidor manipulado obtenido a trav\u00e9s de una autoridad certificadora legitima, y (2)permite a atacantes remotos evitar las restricciones cliente-hostname a trav\u00e9s de un certificado manipulado obtenido a trav\u00e9s de una autoridad certificadora legitima, un asunto relacionado con CVE-2009-2408.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:P\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-310\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C8DDD98-9A2D-402D-9172-F3C4C4C97FEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20C8302B-631A-4DF7-839B-C6F3CC39E000\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB318EB9-1B49-452A-92CF-89D9BA990AB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5913A53B-7B72-4CBD-ADAE-318333EB8B7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"815E58C0-327D-4F14-B496-05FC8179627E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF2D056-5120-4F98-8343-4EC31F962CFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"516E0E86-3D8A-43F9-9DD5-865F5C889FC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A7A9D3C-4BB6-4974-BF96-6E6728196F4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"486EDE1B-37E0-4DDF-BFC9-C8C8945D5E2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7FC7F18-B227-4C46-9A33-FB34DDE456CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCDB903F-0C89-4E65-857E-553CF9C192E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6BF8B1E-68F7-4F27-AD1F-FA02B256BDAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD0DEB63-CA70-44C1-9491-E0790D1A8E21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DA8E73E5-BA41-4FA2-8457-803A97FB00C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C9B64CA-778F-405D-A441-34599246A3F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4975D8ED-7DCB-430F-98E1-DB165D6DA7E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CCBF8CDE-5E75-4DF8-AE1A-B7377953917A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AC4A04B-738C-4018-BB2F-FBEC8746200C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36A2824A-A43F-436B-B9DA-B7E283A00426\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBBAF0F1-7A70-41DC-89A7-2EF9851E4FC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A12EC07-1938-41BF-BCFC-C269668F1EBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"14D7CE0D-510C-46BB-8896-42DD84F57017\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AA5858F-7DFF-460D-B862-83DD636D0A36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4394564D-131D-41C8-AE3A-BFF44779F27B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CCC06DB-1C93-4DE5-AEDC-03E532DA89F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:7.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62133846-C0C8-473A-A842-2A8AF50C2FD4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B45F3BF0-9EB6-4A06-B6F7-DE95DD13EFBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91D1232E-4D0A-4BDC-99F6-25AEE014E9AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"105E9F52-D17E-4A0B-9C46-FD32A930B1E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0DE2055D-AAA4-4A6A-918F-349A9749AF09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C12409B2-161B-4F78-B7AD-3CF69DDCC574\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD2F1DA4-6625-469D-988B-5457B68851A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"870F4348-6001-4C2F-A547-61964074E7C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2E26D52-D95A-4547-BE6E-4F142F54A624\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AAB2D1D-BE61-4D7C-B305-58B4F4126620\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A5F8D8B-34C5-4EBC-BB20-4D11191238B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E260F1F9-0068-4289-A8E8-C30220C2E1F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEE16023-9A5E-46D5-B597-E6885C224786\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84D64D74-9645-4CB7-B710-4FC26FB65B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BCF2794E-6B48-496B-B6CA-CDC7FC2160CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EB12063-F487-4067-A7A5-4482E19D8D14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51AE5B72-DDC5-4207-B467-A9583F3AC781\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99398182-C98C-4B16-9DBA-B1980BDFFA54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6FEC1DE-A2A5-4945-95B8-75FDC9ED3B63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"264AB44D-D014-4734-B538-09E5834EC30B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D5DD1E6-E190-4D75-9D27-5EFB2544B158\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CD7F8CA-09B3-4038-B8B0-2D62A77F2478\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64815C3D-1A1A-4525-9BCD-D89BAEACC950\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B61AFB3-818D-4A82-8C80-9CA9A1DCC090\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0B9704E-4BA9-4389-83AB-62BC65F81D9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FEEC35A2-B17C-46EC-8697-9E03568339BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00562C18-DD81-4B09-AF93-739AF8757A12\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B52D093-7867-4FE8-B055-D8190103A1E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF1A06EE-26BD-4CDA-AEB9-01124FC37E37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF855730-C61C-4FDC-96CB-57775A903421\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D93296E1-AEA2-443E-B9AA-D70535DDD093\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"992C3EC0-4C12-4FB0-8844-9EFB91DA95E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E3EBF1D-D5BD-4A22-B76A-2BAB21534E70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02DC4E8A-A728-4734-B67A-C58C37DA90C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D59B0E32-9E71-4E41-BBAF-7A20008E43E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA6511DE-AF52-4953-8394-37D24A732538\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51B93DC5-F632-47A5-9C58-52429B034D1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D011C676-47D3-4D78-9C58-749AF6C7DBDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFD5BE40-CF55-4C0E-BD89-5CC7DF41F6BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C1EE1C3-4472-4CE2-AB60-9535C1C4AF8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B903334-2F67-4725-8277-6913E03BEFC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6E9049-B347-4940-B523-DBB96DBFE731\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.1.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F1AD77C-BD28-43C9-B2CA-F60C1AD9D200\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7213327F-6909-43A7-952E-11600C28D4E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10EF0EA6-C8B6-40A7-A3AE-8639CA94D5C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9F645F3-9767-4FD8-94EB-1096DF24E6C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C342A823-EF6F-4557-9F9E-D8893EA4C2BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B85A443F-0802-412F-9AEE-3525311C93D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06253BA8-7F1E-4C79-9B2E-197307A627F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A213AB8-A5FE-4062-B895-2FC4B19F60A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A3F083E-59A8-41B1-826F-2CA39BD425C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE49E2D5-8EAC-49C7-B704-E626FBE7EC35\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5059B2F-B588-463E-8E96-BC9DA129C12E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C919AF97-9713-44F8-B742-89C438DB0B48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"400BBC62-5D03-465B-A864-9CD479B963F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BC8C96F7-7F85-4E47-A05F-15E3C70AF583\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C236CF1-72C0-4C3D-AE04-B67E3F18EEC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECC98D47-8B3C-4DE6-8C45-F5B92266027F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05AD5D33-86F4-4BFF-BA84-02AA1347BEEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02FDCF30-D0F7-48AA-9633-9CC060495F47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"788975F6-B3F1-4C21-B963-6BA59F14B71C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6713D96-338B-4467-9F05-3153997F62E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01EB1A77-92AD-47FB-8290-D05C9B6C19C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74857259-30C7-422D-A24D-BE1E33F09466\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD80066B-787E-496B-88FD-F0AE291468C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88C9F0AB-A125-4DCD-A02B-E04D4D95FB5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C991F71-1E27-47A6-97DC-424FC3EF6011\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://osvdb.org/61038\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/37663\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:333\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.postgresql.org/docs/current/static/release-7-4-27.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-0-23.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-1-19.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-2-15.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-3-9.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-4-2.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/support/security.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/509917/100/0/threaded\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/37334\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1023325\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/3519\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://osvdb.org/61038\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/37663\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2009:333\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.postgresql.org/docs/current/static/release-7-4-27.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-0-23.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-1-19.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-2-15.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-3-9.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/docs/current/static/release-8-4-2.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.postgresql.org/support/security.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/archive/1/509917/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/37334\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1023325\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2009/3519\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"This issue is only security-relevant in PostgreSQL versions 8.4 and later as previous versions did not compare the connection host name with the certificate CommonName at all. Client certificate authentication was introduced in version 8.4. Red Hat Enterprise Linux 5 and earlier provided PostgreSQL versions 8.1.x and earlier, and are thus not affected by this issue.\\n\",\"lastModified\":\"2010-01-07T00:00:00\"}]}}"
}
}
GSD-2009-4034
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2009-4034",
"description": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"id": "GSD-2009-4034",
"references": [
"https://www.suse.com/security/cve/CVE-2009-4034.html",
"https://www.debian.org/security/2009/dsa-1964"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2009-4034"
],
"details": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"id": "GSD-2009-4034",
"modified": "2023-12-13T01:19:45.744841Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2009-4034",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2",
"refsource": "MISC",
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"name": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html",
"refsource": "MISC",
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"name": "http://osvdb.org/61038",
"refsource": "MISC",
"url": "http://osvdb.org/61038"
},
{
"name": "http://secunia.com/advisories/37663",
"refsource": "MISC",
"url": "http://secunia.com/advisories/37663"
},
{
"name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012",
"refsource": "MISC",
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
},
{
"name": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333",
"refsource": "MISC",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-7-4-27.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-0-23.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-1-19.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-2-15.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-3-9.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-4-2.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"name": "http://www.postgresql.org/support/security.html",
"refsource": "MISC",
"url": "http://www.postgresql.org/support/security.html"
},
{
"name": "http://www.securityfocus.com/archive/1/509917/100/0/threaded",
"refsource": "MISC",
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"name": "http://www.securityfocus.com/bid/37334",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/37334"
},
{
"name": "http://www.securitytracker.com/id?1023325",
"refsource": "MISC",
"url": "http://www.securitytracker.com/id?1023325"
},
{
"name": "http://www.vupen.com/english/advisories/2009/3519",
"refsource": "MISC",
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"name": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html",
"refsource": "MISC",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"name": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html",
"refsource": "MISC",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.25:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:7.4.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.0.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.1.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2009-4034"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-310"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.postgresql.org/docs/current/static/release-8-3-9.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-7-4-27.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-2-15.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"name": "http://www.postgresql.org/support/security.html",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://www.postgresql.org/support/security.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-4-2.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-0-23.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"name": "http://www.postgresql.org/docs/current/static/release-8-1-19.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"name": "MDVSA-2009:333",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"name": "37663",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/37663"
},
{
"name": "61038",
"refsource": "OSVDB",
"tags": [],
"url": "http://osvdb.org/61038"
},
{
"name": "FEDORA-2009-13363",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"name": "FEDORA-2009-13381",
"refsource": "FEDORA",
"tags": [],
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
},
{
"name": "37334",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/37334"
},
{
"name": "1023325",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id?1023325"
},
{
"name": "ADV-2009-3519",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"name": "SUSE-SR:2010:001",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012",
"refsource": "CONFIRM",
"tags": [],
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
},
{
"name": "HPSBMU02781",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"name": "20100307 rPSA-2010-0012-1 postgresql postgresql-contrib postgresql-server",
"refsource": "BUGTRAQ",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-10-10T19:48Z",
"publishedDate": "2009-12-15T18:30Z"
}
}
}
OPENSUSE-SU-2024:10256-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
postgresql93-9.3.15-1.1 on GA media
Notes
Title of the patch
postgresql93-9.3.15-1.1 on GA media
Description of the patch
These are all security issues fixed in the postgresql93-9.3.15-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10256
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "postgresql93-9.3.15-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the postgresql93-9.3.15-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10256",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10256-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-4772 page",
"url": "https://www.suse.com/security/cve/CVE-2007-4772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-6600 page",
"url": "https://www.suse.com/security/cve/CVE-2007-6600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4034 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4136 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1169 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1170 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3433 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0866 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0867 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0868 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2143 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2655 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3488 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3488/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3489 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3489/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0255 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1899 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1900 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1901 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0060 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0061 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0062 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0063 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0064 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0065 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0066 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0067 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8161 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8161/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0241 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0241/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0242 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0243 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0243/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0244 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3165 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3166 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3167 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0766 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0773 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5423 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5424 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5424/"
}
],
"title": "postgresql93-9.3.15-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10256-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "postgresql93-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-9.3.15-1.1.aarch64",
"product_id": "postgresql93-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-contrib-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-contrib-9.3.15-1.1.aarch64",
"product_id": "postgresql93-contrib-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-devel-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-devel-9.3.15-1.1.aarch64",
"product_id": "postgresql93-devel-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-docs-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-docs-9.3.15-1.1.aarch64",
"product_id": "postgresql93-docs-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-plperl-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-plperl-9.3.15-1.1.aarch64",
"product_id": "postgresql93-plperl-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-plpython-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-plpython-9.3.15-1.1.aarch64",
"product_id": "postgresql93-plpython-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-pltcl-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-pltcl-9.3.15-1.1.aarch64",
"product_id": "postgresql93-pltcl-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-server-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-server-9.3.15-1.1.aarch64",
"product_id": "postgresql93-server-9.3.15-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql93-test-9.3.15-1.1.aarch64",
"product": {
"name": "postgresql93-test-9.3.15-1.1.aarch64",
"product_id": "postgresql93-test-9.3.15-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql93-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-contrib-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-contrib-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-contrib-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-devel-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-devel-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-devel-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-docs-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-docs-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-docs-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-plperl-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-plperl-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-plperl-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-plpython-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-plpython-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-plpython-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-pltcl-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-pltcl-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-pltcl-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-server-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-server-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-server-9.3.15-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql93-test-9.3.15-1.1.ppc64le",
"product": {
"name": "postgresql93-test-9.3.15-1.1.ppc64le",
"product_id": "postgresql93-test-9.3.15-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql93-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-9.3.15-1.1.s390x",
"product_id": "postgresql93-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-contrib-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-contrib-9.3.15-1.1.s390x",
"product_id": "postgresql93-contrib-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-devel-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-devel-9.3.15-1.1.s390x",
"product_id": "postgresql93-devel-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-docs-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-docs-9.3.15-1.1.s390x",
"product_id": "postgresql93-docs-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-plperl-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-plperl-9.3.15-1.1.s390x",
"product_id": "postgresql93-plperl-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-plpython-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-plpython-9.3.15-1.1.s390x",
"product_id": "postgresql93-plpython-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-pltcl-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-pltcl-9.3.15-1.1.s390x",
"product_id": "postgresql93-pltcl-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-server-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-server-9.3.15-1.1.s390x",
"product_id": "postgresql93-server-9.3.15-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql93-test-9.3.15-1.1.s390x",
"product": {
"name": "postgresql93-test-9.3.15-1.1.s390x",
"product_id": "postgresql93-test-9.3.15-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql93-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-9.3.15-1.1.x86_64",
"product_id": "postgresql93-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-contrib-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-contrib-9.3.15-1.1.x86_64",
"product_id": "postgresql93-contrib-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-devel-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-devel-9.3.15-1.1.x86_64",
"product_id": "postgresql93-devel-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-docs-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-docs-9.3.15-1.1.x86_64",
"product_id": "postgresql93-docs-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-plperl-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-plperl-9.3.15-1.1.x86_64",
"product_id": "postgresql93-plperl-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-plpython-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-plpython-9.3.15-1.1.x86_64",
"product_id": "postgresql93-plpython-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-pltcl-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-pltcl-9.3.15-1.1.x86_64",
"product_id": "postgresql93-pltcl-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-server-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-server-9.3.15-1.1.x86_64",
"product_id": "postgresql93-server-9.3.15-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql93-test-9.3.15-1.1.x86_64",
"product": {
"name": "postgresql93-test-9.3.15-1.1.x86_64",
"product_id": "postgresql93-test-9.3.15-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-contrib-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-contrib-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-contrib-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-contrib-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-contrib-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-contrib-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-contrib-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-contrib-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-devel-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-devel-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-devel-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-devel-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-devel-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-devel-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-devel-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-devel-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-docs-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-docs-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-docs-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-docs-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-docs-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-docs-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-docs-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-docs-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plperl-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-plperl-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plperl-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-plperl-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plperl-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-plperl-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plperl-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-plperl-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plpython-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-plpython-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plpython-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-plpython-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plpython-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-plpython-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-plpython-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-plpython-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-pltcl-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-pltcl-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-pltcl-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-pltcl-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-pltcl-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-pltcl-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-pltcl-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-pltcl-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-server-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-server-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-server-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-server-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-server-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-server-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-server-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-server-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-test-9.3.15-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64"
},
"product_reference": "postgresql93-test-9.3.15-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-test-9.3.15-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le"
},
"product_reference": "postgresql93-test-9.3.15-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-test-9.3.15-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x"
},
"product_reference": "postgresql93-test-9.3.15-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql93-test-9.3.15-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
},
"product_reference": "postgresql93-test-9.3.15-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-4772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-4772"
}
],
"notes": [
{
"category": "general",
"text": "The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-4772",
"url": "https://www.suse.com/security/cve/CVE-2007-4772"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-4772",
"url": "https://bugzilla.suse.com/329282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2007-4772"
},
{
"cve": "CVE-2007-6600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-6600"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-6600",
"url": "https://www.suse.com/security/cve/CVE-2007-6600"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/329282"
},
{
"category": "external",
"summary": "SUSE Bug 537706 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/537706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-6600"
},
{
"cve": "CVE-2009-4034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4034"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4034",
"url": "https://www.suse.com/security/cve/CVE-2009-4034"
},
{
"category": "external",
"summary": "SUSE Bug 564710 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/564710"
},
{
"category": "external",
"summary": "SUSE Bug 603968 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/603968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4034"
},
{
"cve": "CVE-2009-4136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4136"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4136",
"url": "https://www.suse.com/security/cve/CVE-2009-4136"
},
{
"category": "external",
"summary": "SUSE Bug 564360 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/564360"
},
{
"category": "external",
"summary": "SUSE Bug 603969 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/603969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4136"
},
{
"cve": "CVE-2010-1169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1169"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script, related to the Safe module (aka Safe.pm) for Perl. NOTE: some sources report that this issue is the same as CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1169",
"url": "https://www.suse.com/security/cve/CVE-2010-1169"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-1169"
},
{
"cve": "CVE-2010-1170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1170"
}
],
"notes": [
{
"category": "general",
"text": "The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltcl_modules table regardless of the table\u0027s ownership and permissions, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Tcl code by creating this table and inserting a crafted Tcl script.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1170",
"url": "https://www.suse.com/security/cve/CVE-2010-1170"
},
{
"category": "external",
"summary": "SUSE Bug 605845 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605845"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 634562 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/634562"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1170"
},
{
"cve": "CVE-2010-3433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3433"
}
],
"notes": [
{
"category": "general",
"text": "The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain privileges via crafted script code in a SECURITY DEFINER function, as demonstrated by (1) redefining standard functions or (2) redefining operators, a different vulnerability than CVE-2010-1168, CVE-2010-1169, CVE-2010-1170, and CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3433",
"url": "https://www.suse.com/security/cve/CVE-2010-3433"
},
{
"category": "external",
"summary": "SUSE Bug 643771 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/643771"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3433"
},
{
"cve": "CVE-2012-0866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0866"
}
],
"notes": [
{
"category": "general",
"text": "CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY DEFINER, which allows remote authenticated users to execute otherwise restricted triggers on arbitrary data by installing the trigger on an attacker-owned table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0866",
"url": "https://www.suse.com/security/cve/CVE-2012-0866"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0866"
},
{
"cve": "CVE-2012-0867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0867"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof connections when the host name is exactly 32 characters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0867",
"url": "https://www.suse.com/security/cve/CVE-2012-0867"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0867"
},
{
"cve": "CVE-2012-0868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0868"
}
],
"notes": [
{
"category": "general",
"text": "CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQL script that is used when the database is restored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0868",
"url": "https://www.suse.com/security/cve/CVE-2012-0868"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0868"
},
{
"cve": "CVE-2012-2143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2143"
}
],
"notes": [
{
"category": "general",
"text": "The crypt_des (aka DES-based crypt) function in FreeBSD before 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contains a 0x80 character, which makes it easier for context-dependent attackers to obtain access via an authentication attempt with an initial substring of the intended password, as demonstrated by a Unicode password.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2143",
"url": "https://www.suse.com/security/cve/CVE-2012-2143"
},
{
"category": "external",
"summary": "SUSE Bug 766797 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766797"
},
{
"category": "external",
"summary": "SUSE Bug 766798 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766798"
},
{
"category": "external",
"summary": "SUSE Bug 766799 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2143"
},
{
"cve": "CVE-2012-2655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2655"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language\u0027s call handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2655",
"url": "https://www.suse.com/security/cve/CVE-2012-2655"
},
{
"category": "external",
"summary": "SUSE Bug 765069 for CVE-2012-2655",
"url": "https://bugzilla.suse.com/765069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-2655"
},
{
"cve": "CVE-2012-3488",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3488"
}
],
"notes": [
{
"category": "general",
"text": "The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet commands that are permitted by the libxslt security options or (2) an xslt_process feature, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3488",
"url": "https://www.suse.com/security/cve/CVE-2012-3488"
},
{
"category": "external",
"summary": "SUSE Bug 776523 for CVE-2012-3488",
"url": "https://bugzilla.suse.com/776523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3488"
},
{
"cve": "CVE-2012-3489",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3489"
}
],
"notes": [
{
"category": "general",
"text": "The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or URLs, and possibly obtain file or URL content that triggers a parsing error, via an XML value that refers to (1) a DTD or (2) an entity, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3489",
"url": "https://www.suse.com/security/cve/CVE-2012-3489"
},
{
"category": "external",
"summary": "SUSE Bug 776524 for CVE-2012-3489",
"url": "https://bugzilla.suse.com/776524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3489"
},
{
"cve": "CVE-2013-0255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0255"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.3, 9.1.x before 9.1.8, 9.0.x before 9.0.12, 8.4.x before 8.4.16, and 8.3.x before 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote authenticated users to cause a denial of service (server crash) or read sensitive process memory via a crafted SQL command, which triggers an array index error and an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0255",
"url": "https://www.suse.com/security/cve/CVE-2013-0255"
},
{
"category": "external",
"summary": "SUSE Bug 802679 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/802679"
},
{
"category": "external",
"summary": "SUSE Bug 803057 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/803057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0255"
},
{
"cve": "CVE-2013-1899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1899"
}
],
"notes": [
{
"category": "general",
"text": "Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute arbitrary code, via a connection request using a database name that begins with a \"-\" (hyphen).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1899",
"url": "https://www.suse.com/security/cve/CVE-2013-1899"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1899",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1899"
},
{
"cve": "CVE-2013-1900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1900"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the \"contrib/pgcrypto functions.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1900",
"url": "https://www.suse.com/security/cve/CVE-2013-1900"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1900",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1900"
},
{
"cve": "CVE-2013-1901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1901"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) pg_start_backup or (2) pg_stop_backup functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1901",
"url": "https://www.suse.com/security/cve/CVE-2013-1901"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1901",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1901"
},
{
"cve": "CVE-2014-0060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0060"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or remove arbitrary users to that role by calling the SET ROLE command before the associated GRANT command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0060",
"url": "https://www.suse.com/security/cve/CVE-2014-0060"
},
{
"category": "external",
"summary": "SUSE Bug 864845 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864845"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0060"
},
{
"cve": "CVE-2014-0061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0061"
}
],
"notes": [
{
"category": "general",
"text": "The validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a function that is (1) defined in another language or (2) not allowed to be directly called by the user due to permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0061",
"url": "https://www.suse.com/security/cve/CVE-2014-0061"
},
{
"category": "external",
"summary": "SUSE Bug 864846 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864846"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0061"
},
{
"cve": "CVE-2014-0062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0062"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the (1) CREATE INDEX and (2) unspecified ALTER TABLE commands in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allows remote authenticated users to create an unauthorized index or read portions of unauthorized tables by creating or deleting a table with the same name during the timing window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0062",
"url": "https://www.suse.com/security/cve/CVE-2014-0062"
},
{
"category": "external",
"summary": "SUSE Bug 864847 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864847"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0062"
},
{
"cve": "CVE-2014-0063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0063"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0063",
"url": "https://www.suse.com/security/cve/CVE-2014-0063"
},
{
"category": "external",
"summary": "SUSE Bug 864850 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864850"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0063"
},
{
"cve": "CVE-2014-0064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0064"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0064",
"url": "https://www.suse.com/security/cve/CVE-2014-0064"
},
{
"category": "external",
"summary": "SUSE Bug 864851 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864851"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 871307 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/871307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0064"
},
{
"cve": "CVE-2014-0065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0065"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, a different vulnerability than CVE-2014-0063.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0065",
"url": "https://www.suse.com/security/cve/CVE-2014-0065"
},
{
"category": "external",
"summary": "SUSE Bug 864852 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864852"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0065"
},
{
"cve": "CVE-2014-0066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0066"
}
],
"notes": [
{
"category": "general",
"text": "The chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0066",
"url": "https://www.suse.com/security/cve/CVE-2014-0066"
},
{
"category": "external",
"summary": "SUSE Bug 864853 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864853"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0066"
},
{
"cve": "CVE-2014-0067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0067"
}
],
"notes": [
{
"category": "general",
"text": "The \"make check\" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging access to this cluster.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0067",
"url": "https://www.suse.com/security/cve/CVE-2014-0067"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 872783 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/872783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0067"
},
{
"cve": "CVE-2014-8161",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8161"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to obtain sensitive column values by triggering constraint violation and then reading the error message.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8161",
"url": "https://www.suse.com/security/cve/CVE-2014-8161"
},
{
"category": "external",
"summary": "SUSE Bug 916953 for CVE-2014-8161",
"url": "https://bugzilla.suse.com/916953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8161"
},
{
"cve": "CVE-2015-0241",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0241"
}
],
"notes": [
{
"category": "general",
"text": "The to_char function in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a (1) large number of digits when processing a numeric formatting template, which triggers a buffer over-read, or (2) crafted timestamp formatting template, which triggers a buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0241",
"url": "https://www.suse.com/security/cve/CVE-2015-0241"
},
{
"category": "external",
"summary": "SUSE Bug 916953 for CVE-2015-0241",
"url": "https://bugzilla.suse.com/916953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0241"
},
{
"cve": "CVE-2015-0242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0242"
}
],
"notes": [
{
"category": "general",
"text": "Stack-based buffer overflow in the *printf function implementations in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1, when running on a Windows system, allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a floating point number with a large precision, as demonstrated by using the to_char function.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0242",
"url": "https://www.suse.com/security/cve/CVE-2015-0242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0242"
},
{
"cve": "CVE-2015-0243",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0243"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in contrib/pgcrypto in PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0243",
"url": "https://www.suse.com/security/cve/CVE-2015-0243"
},
{
"category": "external",
"summary": "SUSE Bug 916953 for CVE-2015-0243",
"url": "https://bugzilla.suse.com/916953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0243"
},
{
"cve": "CVE-2015-0244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0244"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.0.19, 9.1.x before 9.1.15, 9.2.x before 9.2.10, 9.3.x before 9.3.6, and 9.4.x before 9.4.1 does not properly handle errors while reading a protocol message, which allows remote attackers to conduct SQL injection attacks via crafted binary data in a parameter and causing an error, which triggers the loss of synchronization and part of the protocol message to be treated as a new message, as demonstrated by causing a timeout or query cancellation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0244",
"url": "https://www.suse.com/security/cve/CVE-2015-0244"
},
{
"category": "external",
"summary": "SUSE Bug 916953 for CVE-2015-0244",
"url": "https://bugzilla.suse.com/916953"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0244"
},
{
"cve": "CVE-2015-3165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3165"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3165",
"url": "https://www.suse.com/security/cve/CVE-2015-3165"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3165"
},
{
"cve": "CVE-2015-3166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3166"
}
],
"notes": [
{
"category": "general",
"text": "The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified impact via unknown vectors, as demonstrated by an out-of-memory error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3166",
"url": "https://www.suse.com/security/cve/CVE-2015-3166"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3166"
},
{
"cve": "CVE-2015-3167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3167"
}
],
"notes": [
{
"category": "general",
"text": "contrib/pgcrypto in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for attackers to obtain the key via a brute force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3167",
"url": "https://www.suse.com/security/cve/CVE-2015-3167"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3167"
},
{
"cve": "CVE-2015-5288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5288"
}
],
"notes": [
{
"category": "general",
"text": "The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a \"too-short\" salt.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5288",
"url": "https://www.suse.com/security/cve/CVE-2015-5288"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-5288"
},
{
"cve": "CVE-2015-5289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5289"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in json parsing in PostgreSQL before 9.3.x before 9.3.10 and 9.4.x before 9.4.5 allow attackers to cause a denial of service (server crash) via unspecified vectors, which are not properly handled in (1) json or (2) jsonb values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5289",
"url": "https://www.suse.com/security/cve/CVE-2015-5289"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-5289"
},
{
"cve": "CVE-2016-0766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0766"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0766",
"url": "https://www.suse.com/security/cve/CVE-2016-0766"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/978323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0766"
},
{
"cve": "CVE-2016-0773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0773"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 allows remote attackers to cause a denial of service (infinite loop or buffer overflow and crash) via a large Unicode character range in a regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0773",
"url": "https://www.suse.com/security/cve/CVE-2016-0773"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/978323"
},
{
"category": "external",
"summary": "SUSE Bug 983246 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/983246"
},
{
"category": "external",
"summary": "SUSE Bug 986409 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/986409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0773"
},
{
"cve": "CVE-2016-5423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5423"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 allow remote authenticated users to cause a denial of service (NULL pointer dereference and server crash), obtain sensitive memory information, or possibly execute arbitrary code via (1) a CASE expression within the test value subexpression of another CASE or (2) inlining of an SQL function that implements the equality operator used for a CASE expression involving values of different types.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5423",
"url": "https://www.suse.com/security/cve/CVE-2016-5423"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993454 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/993454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5423"
},
{
"cve": "CVE-2016-5424",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5424"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5424",
"url": "https://www.suse.com/security/cve/CVE-2016-5424"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993453 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/993453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-contrib-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-devel-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-docs-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plperl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-plpython-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-pltcl-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-server-9.3.15-1.1.x86_64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.aarch64",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.s390x",
"openSUSE Tumbleweed:postgresql93-test-9.3.15-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5424"
}
]
}
OPENSUSE-SU-2024:10030-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
postgresql94-9.4.10-1.1 on GA media
Notes
Title of the patch
postgresql94-9.4.10-1.1 on GA media
Description of the patch
These are all security issues fixed in the postgresql94-9.4.10-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10030
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "postgresql94-9.4.10-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the postgresql94-9.4.10-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10030",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10030-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-4772 page",
"url": "https://www.suse.com/security/cve/CVE-2007-4772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-6600 page",
"url": "https://www.suse.com/security/cve/CVE-2007-6600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4034 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4136 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1169 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1170 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3433 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0866 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0867 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0868 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2143 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2655 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3488 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3488/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3489 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3489/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0255 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1899 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1900 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1901 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0060 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0061 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0062 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0063 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0064 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0065 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0066 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0067 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3165 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3166 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3167 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0766 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0773 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5423 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5424 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5424/"
}
],
"title": "postgresql94-9.4.10-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10030-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "postgresql94-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-9.4.10-1.1.aarch64",
"product_id": "postgresql94-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-contrib-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-contrib-9.4.10-1.1.aarch64",
"product_id": "postgresql94-contrib-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-devel-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-devel-9.4.10-1.1.aarch64",
"product_id": "postgresql94-devel-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-docs-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-docs-9.4.10-1.1.aarch64",
"product_id": "postgresql94-docs-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-plperl-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-plperl-9.4.10-1.1.aarch64",
"product_id": "postgresql94-plperl-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-plpython-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-plpython-9.4.10-1.1.aarch64",
"product_id": "postgresql94-plpython-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-pltcl-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-pltcl-9.4.10-1.1.aarch64",
"product_id": "postgresql94-pltcl-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-server-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-server-9.4.10-1.1.aarch64",
"product_id": "postgresql94-server-9.4.10-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql94-test-9.4.10-1.1.aarch64",
"product": {
"name": "postgresql94-test-9.4.10-1.1.aarch64",
"product_id": "postgresql94-test-9.4.10-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql94-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-contrib-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-contrib-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-contrib-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-devel-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-devel-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-devel-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-docs-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-docs-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-docs-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-plperl-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-plperl-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-plperl-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-plpython-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-plpython-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-plpython-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-pltcl-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-pltcl-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-pltcl-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-server-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-server-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-server-9.4.10-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql94-test-9.4.10-1.1.ppc64le",
"product": {
"name": "postgresql94-test-9.4.10-1.1.ppc64le",
"product_id": "postgresql94-test-9.4.10-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql94-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-9.4.10-1.1.s390x",
"product_id": "postgresql94-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-contrib-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-contrib-9.4.10-1.1.s390x",
"product_id": "postgresql94-contrib-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-devel-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-devel-9.4.10-1.1.s390x",
"product_id": "postgresql94-devel-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-docs-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-docs-9.4.10-1.1.s390x",
"product_id": "postgresql94-docs-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-plperl-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-plperl-9.4.10-1.1.s390x",
"product_id": "postgresql94-plperl-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-plpython-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-plpython-9.4.10-1.1.s390x",
"product_id": "postgresql94-plpython-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-pltcl-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-pltcl-9.4.10-1.1.s390x",
"product_id": "postgresql94-pltcl-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-server-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-server-9.4.10-1.1.s390x",
"product_id": "postgresql94-server-9.4.10-1.1.s390x"
}
},
{
"category": "product_version",
"name": "postgresql94-test-9.4.10-1.1.s390x",
"product": {
"name": "postgresql94-test-9.4.10-1.1.s390x",
"product_id": "postgresql94-test-9.4.10-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "postgresql94-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-9.4.10-1.1.x86_64",
"product_id": "postgresql94-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-contrib-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-contrib-9.4.10-1.1.x86_64",
"product_id": "postgresql94-contrib-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-devel-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-devel-9.4.10-1.1.x86_64",
"product_id": "postgresql94-devel-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-docs-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-docs-9.4.10-1.1.x86_64",
"product_id": "postgresql94-docs-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-plperl-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-plperl-9.4.10-1.1.x86_64",
"product_id": "postgresql94-plperl-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-plpython-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-plpython-9.4.10-1.1.x86_64",
"product_id": "postgresql94-plpython-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-pltcl-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-pltcl-9.4.10-1.1.x86_64",
"product_id": "postgresql94-pltcl-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-server-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-server-9.4.10-1.1.x86_64",
"product_id": "postgresql94-server-9.4.10-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql94-test-9.4.10-1.1.x86_64",
"product": {
"name": "postgresql94-test-9.4.10-1.1.x86_64",
"product_id": "postgresql94-test-9.4.10-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-contrib-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-contrib-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-contrib-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-contrib-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-contrib-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-contrib-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-contrib-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-contrib-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-devel-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-devel-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-devel-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-devel-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-devel-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-devel-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-devel-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-devel-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-docs-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-docs-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-docs-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-docs-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-docs-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-docs-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-docs-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-docs-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plperl-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-plperl-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plperl-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-plperl-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plperl-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-plperl-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plperl-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-plperl-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plpython-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-plpython-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plpython-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-plpython-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plpython-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-plpython-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-plpython-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-plpython-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-pltcl-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-pltcl-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-pltcl-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-pltcl-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-pltcl-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-pltcl-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-pltcl-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-pltcl-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-server-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-server-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-server-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-server-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-server-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-server-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-server-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-server-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-test-9.4.10-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64"
},
"product_reference": "postgresql94-test-9.4.10-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-test-9.4.10-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le"
},
"product_reference": "postgresql94-test-9.4.10-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-test-9.4.10-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x"
},
"product_reference": "postgresql94-test-9.4.10-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql94-test-9.4.10-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
},
"product_reference": "postgresql94-test-9.4.10-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-4772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-4772"
}
],
"notes": [
{
"category": "general",
"text": "The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-4772",
"url": "https://www.suse.com/security/cve/CVE-2007-4772"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-4772",
"url": "https://bugzilla.suse.com/329282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2007-4772"
},
{
"cve": "CVE-2007-6600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-6600"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-6600",
"url": "https://www.suse.com/security/cve/CVE-2007-6600"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/329282"
},
{
"category": "external",
"summary": "SUSE Bug 537706 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/537706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-6600"
},
{
"cve": "CVE-2009-4034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4034"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4034",
"url": "https://www.suse.com/security/cve/CVE-2009-4034"
},
{
"category": "external",
"summary": "SUSE Bug 564710 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/564710"
},
{
"category": "external",
"summary": "SUSE Bug 603968 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/603968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4034"
},
{
"cve": "CVE-2009-4136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4136"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4136",
"url": "https://www.suse.com/security/cve/CVE-2009-4136"
},
{
"category": "external",
"summary": "SUSE Bug 564360 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/564360"
},
{
"category": "external",
"summary": "SUSE Bug 603969 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/603969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4136"
},
{
"cve": "CVE-2010-1169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1169"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script, related to the Safe module (aka Safe.pm) for Perl. NOTE: some sources report that this issue is the same as CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1169",
"url": "https://www.suse.com/security/cve/CVE-2010-1169"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-1169"
},
{
"cve": "CVE-2010-1170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1170"
}
],
"notes": [
{
"category": "general",
"text": "The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltcl_modules table regardless of the table\u0027s ownership and permissions, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Tcl code by creating this table and inserting a crafted Tcl script.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1170",
"url": "https://www.suse.com/security/cve/CVE-2010-1170"
},
{
"category": "external",
"summary": "SUSE Bug 605845 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605845"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 634562 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/634562"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1170"
},
{
"cve": "CVE-2010-3433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3433"
}
],
"notes": [
{
"category": "general",
"text": "The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain privileges via crafted script code in a SECURITY DEFINER function, as demonstrated by (1) redefining standard functions or (2) redefining operators, a different vulnerability than CVE-2010-1168, CVE-2010-1169, CVE-2010-1170, and CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3433",
"url": "https://www.suse.com/security/cve/CVE-2010-3433"
},
{
"category": "external",
"summary": "SUSE Bug 643771 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/643771"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3433"
},
{
"cve": "CVE-2012-0866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0866"
}
],
"notes": [
{
"category": "general",
"text": "CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY DEFINER, which allows remote authenticated users to execute otherwise restricted triggers on arbitrary data by installing the trigger on an attacker-owned table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0866",
"url": "https://www.suse.com/security/cve/CVE-2012-0866"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0866"
},
{
"cve": "CVE-2012-0867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0867"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof connections when the host name is exactly 32 characters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0867",
"url": "https://www.suse.com/security/cve/CVE-2012-0867"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0867"
},
{
"cve": "CVE-2012-0868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0868"
}
],
"notes": [
{
"category": "general",
"text": "CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQL script that is used when the database is restored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0868",
"url": "https://www.suse.com/security/cve/CVE-2012-0868"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0868"
},
{
"cve": "CVE-2012-2143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2143"
}
],
"notes": [
{
"category": "general",
"text": "The crypt_des (aka DES-based crypt) function in FreeBSD before 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contains a 0x80 character, which makes it easier for context-dependent attackers to obtain access via an authentication attempt with an initial substring of the intended password, as demonstrated by a Unicode password.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2143",
"url": "https://www.suse.com/security/cve/CVE-2012-2143"
},
{
"category": "external",
"summary": "SUSE Bug 766797 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766797"
},
{
"category": "external",
"summary": "SUSE Bug 766798 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766798"
},
{
"category": "external",
"summary": "SUSE Bug 766799 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2143"
},
{
"cve": "CVE-2012-2655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2655"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language\u0027s call handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2655",
"url": "https://www.suse.com/security/cve/CVE-2012-2655"
},
{
"category": "external",
"summary": "SUSE Bug 765069 for CVE-2012-2655",
"url": "https://bugzilla.suse.com/765069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-2655"
},
{
"cve": "CVE-2012-3488",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3488"
}
],
"notes": [
{
"category": "general",
"text": "The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet commands that are permitted by the libxslt security options or (2) an xslt_process feature, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3488",
"url": "https://www.suse.com/security/cve/CVE-2012-3488"
},
{
"category": "external",
"summary": "SUSE Bug 776523 for CVE-2012-3488",
"url": "https://bugzilla.suse.com/776523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3488"
},
{
"cve": "CVE-2012-3489",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3489"
}
],
"notes": [
{
"category": "general",
"text": "The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or URLs, and possibly obtain file or URL content that triggers a parsing error, via an XML value that refers to (1) a DTD or (2) an entity, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3489",
"url": "https://www.suse.com/security/cve/CVE-2012-3489"
},
{
"category": "external",
"summary": "SUSE Bug 776524 for CVE-2012-3489",
"url": "https://bugzilla.suse.com/776524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3489"
},
{
"cve": "CVE-2013-0255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0255"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.3, 9.1.x before 9.1.8, 9.0.x before 9.0.12, 8.4.x before 8.4.16, and 8.3.x before 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote authenticated users to cause a denial of service (server crash) or read sensitive process memory via a crafted SQL command, which triggers an array index error and an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0255",
"url": "https://www.suse.com/security/cve/CVE-2013-0255"
},
{
"category": "external",
"summary": "SUSE Bug 802679 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/802679"
},
{
"category": "external",
"summary": "SUSE Bug 803057 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/803057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0255"
},
{
"cve": "CVE-2013-1899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1899"
}
],
"notes": [
{
"category": "general",
"text": "Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute arbitrary code, via a connection request using a database name that begins with a \"-\" (hyphen).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1899",
"url": "https://www.suse.com/security/cve/CVE-2013-1899"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1899",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1899"
},
{
"cve": "CVE-2013-1900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1900"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the \"contrib/pgcrypto functions.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1900",
"url": "https://www.suse.com/security/cve/CVE-2013-1900"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1900",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1900"
},
{
"cve": "CVE-2013-1901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1901"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) pg_start_backup or (2) pg_stop_backup functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1901",
"url": "https://www.suse.com/security/cve/CVE-2013-1901"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1901",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1901"
},
{
"cve": "CVE-2014-0060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0060"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or remove arbitrary users to that role by calling the SET ROLE command before the associated GRANT command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0060",
"url": "https://www.suse.com/security/cve/CVE-2014-0060"
},
{
"category": "external",
"summary": "SUSE Bug 864845 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864845"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0060"
},
{
"cve": "CVE-2014-0061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0061"
}
],
"notes": [
{
"category": "general",
"text": "The validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a function that is (1) defined in another language or (2) not allowed to be directly called by the user due to permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0061",
"url": "https://www.suse.com/security/cve/CVE-2014-0061"
},
{
"category": "external",
"summary": "SUSE Bug 864846 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864846"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0061"
},
{
"cve": "CVE-2014-0062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0062"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the (1) CREATE INDEX and (2) unspecified ALTER TABLE commands in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allows remote authenticated users to create an unauthorized index or read portions of unauthorized tables by creating or deleting a table with the same name during the timing window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0062",
"url": "https://www.suse.com/security/cve/CVE-2014-0062"
},
{
"category": "external",
"summary": "SUSE Bug 864847 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864847"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0062"
},
{
"cve": "CVE-2014-0063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0063"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0063",
"url": "https://www.suse.com/security/cve/CVE-2014-0063"
},
{
"category": "external",
"summary": "SUSE Bug 864850 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864850"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0063"
},
{
"cve": "CVE-2014-0064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0064"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0064",
"url": "https://www.suse.com/security/cve/CVE-2014-0064"
},
{
"category": "external",
"summary": "SUSE Bug 864851 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864851"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 871307 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/871307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0064"
},
{
"cve": "CVE-2014-0065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0065"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, a different vulnerability than CVE-2014-0063.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0065",
"url": "https://www.suse.com/security/cve/CVE-2014-0065"
},
{
"category": "external",
"summary": "SUSE Bug 864852 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864852"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0065"
},
{
"cve": "CVE-2014-0066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0066"
}
],
"notes": [
{
"category": "general",
"text": "The chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0066",
"url": "https://www.suse.com/security/cve/CVE-2014-0066"
},
{
"category": "external",
"summary": "SUSE Bug 864853 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864853"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0066"
},
{
"cve": "CVE-2014-0067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0067"
}
],
"notes": [
{
"category": "general",
"text": "The \"make check\" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging access to this cluster.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0067",
"url": "https://www.suse.com/security/cve/CVE-2014-0067"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 872783 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/872783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0067"
},
{
"cve": "CVE-2015-3165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3165"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3165",
"url": "https://www.suse.com/security/cve/CVE-2015-3165"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3165"
},
{
"cve": "CVE-2015-3166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3166"
}
],
"notes": [
{
"category": "general",
"text": "The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified impact via unknown vectors, as demonstrated by an out-of-memory error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3166",
"url": "https://www.suse.com/security/cve/CVE-2015-3166"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3166"
},
{
"cve": "CVE-2015-3167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3167"
}
],
"notes": [
{
"category": "general",
"text": "contrib/pgcrypto in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for attackers to obtain the key via a brute force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3167",
"url": "https://www.suse.com/security/cve/CVE-2015-3167"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3167"
},
{
"cve": "CVE-2015-5288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5288"
}
],
"notes": [
{
"category": "general",
"text": "The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a \"too-short\" salt.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5288",
"url": "https://www.suse.com/security/cve/CVE-2015-5288"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-5288"
},
{
"cve": "CVE-2015-5289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5289"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in json parsing in PostgreSQL before 9.3.x before 9.3.10 and 9.4.x before 9.4.5 allow attackers to cause a denial of service (server crash) via unspecified vectors, which are not properly handled in (1) json or (2) jsonb values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5289",
"url": "https://www.suse.com/security/cve/CVE-2015-5289"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-5289"
},
{
"cve": "CVE-2016-0766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0766"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0766",
"url": "https://www.suse.com/security/cve/CVE-2016-0766"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/978323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0766"
},
{
"cve": "CVE-2016-0773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0773"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 allows remote attackers to cause a denial of service (infinite loop or buffer overflow and crash) via a large Unicode character range in a regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0773",
"url": "https://www.suse.com/security/cve/CVE-2016-0773"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/978323"
},
{
"category": "external",
"summary": "SUSE Bug 983246 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/983246"
},
{
"category": "external",
"summary": "SUSE Bug 986409 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/986409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0773"
},
{
"cve": "CVE-2016-5423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5423"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 allow remote authenticated users to cause a denial of service (NULL pointer dereference and server crash), obtain sensitive memory information, or possibly execute arbitrary code via (1) a CASE expression within the test value subexpression of another CASE or (2) inlining of an SQL function that implements the equality operator used for a CASE expression involving values of different types.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5423",
"url": "https://www.suse.com/security/cve/CVE-2016-5423"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993454 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/993454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5423"
},
{
"cve": "CVE-2016-5424",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5424"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5424",
"url": "https://www.suse.com/security/cve/CVE-2016-5424"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993453 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/993453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-contrib-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-devel-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-docs-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plperl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-plpython-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-pltcl-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-server-9.4.10-1.1.x86_64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.aarch64",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.ppc64le",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.s390x",
"openSUSE Tumbleweed:postgresql94-test-9.4.10-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5424"
}
]
}
OPENSUSE-SU-2024:10273-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
libecpg6-32bit-9.5.4-1.2 on GA media
Notes
Title of the patch
libecpg6-32bit-9.5.4-1.2 on GA media
Description of the patch
These are all security issues fixed in the libecpg6-32bit-9.5.4-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10273
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libecpg6-32bit-9.5.4-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libecpg6-32bit-9.5.4-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10273",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10273-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-4772 page",
"url": "https://www.suse.com/security/cve/CVE-2007-4772/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2007-6600 page",
"url": "https://www.suse.com/security/cve/CVE-2007-6600/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4034 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4034/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-4136 page",
"url": "https://www.suse.com/security/cve/CVE-2009-4136/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1169 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1169/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-1170 page",
"url": "https://www.suse.com/security/cve/CVE-2010-1170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3433 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3433/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0866 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0866/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0867 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0867/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-0868 page",
"url": "https://www.suse.com/security/cve/CVE-2012-0868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2143 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2143/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-2655 page",
"url": "https://www.suse.com/security/cve/CVE-2012-2655/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3488 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3488/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2012-3489 page",
"url": "https://www.suse.com/security/cve/CVE-2012-3489/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-0255 page",
"url": "https://www.suse.com/security/cve/CVE-2013-0255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1899 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1900 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1901 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0060 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0060/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0061 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0061/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0062 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0062/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0063 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0063/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0064 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0065 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0066 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0066/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0067 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0067/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3165 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3165/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3166 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3166/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3167 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5288 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5289 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0766 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-0773 page",
"url": "https://www.suse.com/security/cve/CVE-2016-0773/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2193 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2193/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-3065 page",
"url": "https://www.suse.com/security/cve/CVE-2016-3065/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5423 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5423/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5424 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5424/"
}
],
"title": "libecpg6-32bit-9.5.4-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10273-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libecpg6-9.5.4-1.2.aarch64",
"product": {
"name": "libecpg6-9.5.4-1.2.aarch64",
"product_id": "libecpg6-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libecpg6-32bit-9.5.4-1.2.aarch64",
"product": {
"name": "libecpg6-32bit-9.5.4-1.2.aarch64",
"product_id": "libecpg6-32bit-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libpq5-9.5.4-1.2.aarch64",
"product": {
"name": "libpq5-9.5.4-1.2.aarch64",
"product_id": "libpq5-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "libpq5-32bit-9.5.4-1.2.aarch64",
"product": {
"name": "libpq5-32bit-9.5.4-1.2.aarch64",
"product_id": "libpq5-32bit-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-9.5.4-1.2.aarch64",
"product_id": "postgresql95-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-contrib-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-contrib-9.5.4-1.2.aarch64",
"product_id": "postgresql95-contrib-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-devel-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-devel-9.5.4-1.2.aarch64",
"product_id": "postgresql95-devel-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-docs-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-docs-9.5.4-1.2.aarch64",
"product_id": "postgresql95-docs-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-plperl-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-plperl-9.5.4-1.2.aarch64",
"product_id": "postgresql95-plperl-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-plpython-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-plpython-9.5.4-1.2.aarch64",
"product_id": "postgresql95-plpython-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-pltcl-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-pltcl-9.5.4-1.2.aarch64",
"product_id": "postgresql95-pltcl-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-server-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-server-9.5.4-1.2.aarch64",
"product_id": "postgresql95-server-9.5.4-1.2.aarch64"
}
},
{
"category": "product_version",
"name": "postgresql95-test-9.5.4-1.2.aarch64",
"product": {
"name": "postgresql95-test-9.5.4-1.2.aarch64",
"product_id": "postgresql95-test-9.5.4-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libecpg6-9.5.4-1.2.ppc64le",
"product": {
"name": "libecpg6-9.5.4-1.2.ppc64le",
"product_id": "libecpg6-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libecpg6-32bit-9.5.4-1.2.ppc64le",
"product": {
"name": "libecpg6-32bit-9.5.4-1.2.ppc64le",
"product_id": "libecpg6-32bit-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libpq5-9.5.4-1.2.ppc64le",
"product": {
"name": "libpq5-9.5.4-1.2.ppc64le",
"product_id": "libpq5-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "libpq5-32bit-9.5.4-1.2.ppc64le",
"product": {
"name": "libpq5-32bit-9.5.4-1.2.ppc64le",
"product_id": "libpq5-32bit-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-contrib-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-contrib-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-contrib-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-devel-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-devel-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-devel-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-docs-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-docs-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-docs-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-plperl-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-plperl-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-plperl-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-plpython-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-plpython-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-plpython-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-pltcl-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-pltcl-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-pltcl-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-server-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-server-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-server-9.5.4-1.2.ppc64le"
}
},
{
"category": "product_version",
"name": "postgresql95-test-9.5.4-1.2.ppc64le",
"product": {
"name": "postgresql95-test-9.5.4-1.2.ppc64le",
"product_id": "postgresql95-test-9.5.4-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libecpg6-9.5.4-1.2.s390x",
"product": {
"name": "libecpg6-9.5.4-1.2.s390x",
"product_id": "libecpg6-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libecpg6-32bit-9.5.4-1.2.s390x",
"product": {
"name": "libecpg6-32bit-9.5.4-1.2.s390x",
"product_id": "libecpg6-32bit-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libpq5-9.5.4-1.2.s390x",
"product": {
"name": "libpq5-9.5.4-1.2.s390x",
"product_id": "libpq5-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "libpq5-32bit-9.5.4-1.2.s390x",
"product": {
"name": "libpq5-32bit-9.5.4-1.2.s390x",
"product_id": "libpq5-32bit-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-9.5.4-1.2.s390x",
"product_id": "postgresql95-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-contrib-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-contrib-9.5.4-1.2.s390x",
"product_id": "postgresql95-contrib-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-devel-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-devel-9.5.4-1.2.s390x",
"product_id": "postgresql95-devel-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-docs-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-docs-9.5.4-1.2.s390x",
"product_id": "postgresql95-docs-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-plperl-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-plperl-9.5.4-1.2.s390x",
"product_id": "postgresql95-plperl-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-plpython-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-plpython-9.5.4-1.2.s390x",
"product_id": "postgresql95-plpython-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-pltcl-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-pltcl-9.5.4-1.2.s390x",
"product_id": "postgresql95-pltcl-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-server-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-server-9.5.4-1.2.s390x",
"product_id": "postgresql95-server-9.5.4-1.2.s390x"
}
},
{
"category": "product_version",
"name": "postgresql95-test-9.5.4-1.2.s390x",
"product": {
"name": "postgresql95-test-9.5.4-1.2.s390x",
"product_id": "postgresql95-test-9.5.4-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libecpg6-9.5.4-1.2.x86_64",
"product": {
"name": "libecpg6-9.5.4-1.2.x86_64",
"product_id": "libecpg6-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libecpg6-32bit-9.5.4-1.2.x86_64",
"product": {
"name": "libecpg6-32bit-9.5.4-1.2.x86_64",
"product_id": "libecpg6-32bit-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libpq5-9.5.4-1.2.x86_64",
"product": {
"name": "libpq5-9.5.4-1.2.x86_64",
"product_id": "libpq5-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "libpq5-32bit-9.5.4-1.2.x86_64",
"product": {
"name": "libpq5-32bit-9.5.4-1.2.x86_64",
"product_id": "libpq5-32bit-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-9.5.4-1.2.x86_64",
"product_id": "postgresql95-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-contrib-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-contrib-9.5.4-1.2.x86_64",
"product_id": "postgresql95-contrib-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-devel-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-devel-9.5.4-1.2.x86_64",
"product_id": "postgresql95-devel-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-docs-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-docs-9.5.4-1.2.x86_64",
"product_id": "postgresql95-docs-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-plperl-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-plperl-9.5.4-1.2.x86_64",
"product_id": "postgresql95-plperl-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-plpython-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-plpython-9.5.4-1.2.x86_64",
"product_id": "postgresql95-plpython-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-pltcl-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-pltcl-9.5.4-1.2.x86_64",
"product_id": "postgresql95-pltcl-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-server-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-server-9.5.4-1.2.x86_64",
"product_id": "postgresql95-server-9.5.4-1.2.x86_64"
}
},
{
"category": "product_version",
"name": "postgresql95-test-9.5.4-1.2.x86_64",
"product": {
"name": "postgresql95-test-9.5.4-1.2.x86_64",
"product_id": "postgresql95-test-9.5.4-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64"
},
"product_reference": "libecpg6-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le"
},
"product_reference": "libecpg6-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x"
},
"product_reference": "libecpg6-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64"
},
"product_reference": "libecpg6-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-32bit-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64"
},
"product_reference": "libecpg6-32bit-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-32bit-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le"
},
"product_reference": "libecpg6-32bit-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-32bit-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x"
},
"product_reference": "libecpg6-32bit-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libecpg6-32bit-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64"
},
"product_reference": "libecpg6-32bit-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64"
},
"product_reference": "libpq5-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le"
},
"product_reference": "libpq5-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x"
},
"product_reference": "libpq5-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64"
},
"product_reference": "libpq5-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-32bit-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64"
},
"product_reference": "libpq5-32bit-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-32bit-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le"
},
"product_reference": "libpq5-32bit-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-32bit-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x"
},
"product_reference": "libpq5-32bit-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libpq5-32bit-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64"
},
"product_reference": "libpq5-32bit-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-contrib-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-contrib-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-contrib-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-contrib-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-contrib-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-contrib-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-contrib-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-contrib-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-devel-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-devel-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-devel-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-devel-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-devel-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-devel-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-devel-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-devel-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-docs-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-docs-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-docs-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-docs-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-docs-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-docs-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-docs-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-docs-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plperl-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-plperl-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plperl-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-plperl-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plperl-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-plperl-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plperl-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-plperl-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plpython-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-plpython-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plpython-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-plpython-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plpython-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-plpython-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-plpython-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-plpython-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-pltcl-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-pltcl-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-pltcl-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-pltcl-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-pltcl-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-pltcl-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-pltcl-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-pltcl-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-server-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-server-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-server-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-server-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-server-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-server-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-server-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-server-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-test-9.5.4-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64"
},
"product_reference": "postgresql95-test-9.5.4-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-test-9.5.4-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le"
},
"product_reference": "postgresql95-test-9.5.4-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-test-9.5.4-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x"
},
"product_reference": "postgresql95-test-9.5.4-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "postgresql95-test-9.5.4-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
},
"product_reference": "postgresql95-test-9.5.4-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2007-4772",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-4772"
}
],
"notes": [
{
"category": "general",
"text": "The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows context-dependent attackers to cause a denial of service (infinite loop) via a crafted regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-4772",
"url": "https://www.suse.com/security/cve/CVE-2007-4772"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-4772",
"url": "https://bugzilla.suse.com/329282"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2007-4772"
},
{
"cve": "CVE-2007-6600",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2007-6600"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, 7.4 before 7.4.19, and 7.3 before 7.3.21 uses superuser privileges instead of table owner privileges for (1) VACUUM and (2) ANALYZE operations within index functions, and supports (3) SET ROLE and (4) SET SESSION AUTHORIZATION within index functions, which allows remote authenticated users to gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2007-6600",
"url": "https://www.suse.com/security/cve/CVE-2007-6600"
},
{
"category": "external",
"summary": "SUSE Bug 329282 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/329282"
},
{
"category": "external",
"summary": "SUSE Bug 537706 for CVE-2007-6600",
"url": "https://bugzilla.suse.com/537706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2007-6600"
},
{
"cve": "CVE-2009-4034",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4034"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4034",
"url": "https://www.suse.com/security/cve/CVE-2009-4034"
},
{
"category": "external",
"summary": "SUSE Bug 564710 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/564710"
},
{
"category": "external",
"summary": "SUSE Bug 603968 for CVE-2009-4034",
"url": "https://bugzilla.suse.com/603968"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4034"
},
{
"cve": "CVE-2009-4136",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-4136"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly manage session-local state during execution of an index function by a database superuser, which allows remote authenticated users to gain privileges via a table with crafted index functions, as demonstrated by functions that modify (1) search_path or (2) a prepared statement, a related issue to CVE-2007-6600 and CVE-2009-3230.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-4136",
"url": "https://www.suse.com/security/cve/CVE-2009-4136"
},
{
"category": "external",
"summary": "SUSE Bug 564360 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/564360"
},
{
"category": "external",
"summary": "SUSE Bug 603969 for CVE-2009-4136",
"url": "https://bugzilla.suse.com/603969"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2009-4136"
},
{
"cve": "CVE-2010-1169",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1169"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 does not properly restrict PL/perl procedures, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Perl code via a crafted script, related to the Safe module (aka Safe.pm) for Perl. NOTE: some sources report that this issue is the same as CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1169",
"url": "https://www.suse.com/security/cve/CVE-2010-1169"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1169",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2010-1169"
},
{
"cve": "CVE-2010-1170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-1170"
}
],
"notes": [
{
"category": "general",
"text": "The PL/Tcl implementation in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2 loads Tcl code from the pltcl_modules table regardless of the table\u0027s ownership and permissions, which allows remote authenticated users, with database-creation privileges, to execute arbitrary Tcl code by creating this table and inserting a crafted Tcl script.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-1170",
"url": "https://www.suse.com/security/cve/CVE-2010-1170"
},
{
"category": "external",
"summary": "SUSE Bug 605845 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605845"
},
{
"category": "external",
"summary": "SUSE Bug 605926 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/605926"
},
{
"category": "external",
"summary": "SUSE Bug 634562 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/634562"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-1170",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-1170"
},
{
"cve": "CVE-2010-3433",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3433"
}
],
"notes": [
{
"category": "general",
"text": "The PL/perl and PL/Tcl implementations in PostgreSQL 7.4 before 7.4.30, 8.0 before 8.0.26, 8.1 before 8.1.22, 8.2 before 8.2.18, 8.3 before 8.3.12, 8.4 before 8.4.5, and 9.0 before 9.0.1 do not properly protect script execution by a different SQL user identity within the same session, which allows remote authenticated users to gain privileges via crafted script code in a SECURITY DEFINER function, as demonstrated by (1) redefining standard functions or (2) redefining operators, a different vulnerability than CVE-2010-1168, CVE-2010-1169, CVE-2010-1170, and CVE-2010-1447.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3433",
"url": "https://www.suse.com/security/cve/CVE-2010-3433"
},
{
"category": "external",
"summary": "SUSE Bug 643771 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/643771"
},
{
"category": "external",
"summary": "SUSE Bug 648140 for CVE-2010-3433",
"url": "https://bugzilla.suse.com/648140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3433"
},
{
"cve": "CVE-2012-0866",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0866"
}
],
"notes": [
{
"category": "general",
"text": "CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY DEFINER, which allows remote authenticated users to execute otherwise restricted triggers on arbitrary data by installing the trigger on an attacker-owned table.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0866",
"url": "https://www.suse.com/security/cve/CVE-2012-0866"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0866",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0866"
},
{
"cve": "CVE-2012-0867",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0867"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof connections when the host name is exactly 32 characters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0867",
"url": "https://www.suse.com/security/cve/CVE-2012-0867"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0867",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0867"
},
{
"cve": "CVE-2012-0868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-0868"
}
],
"notes": [
{
"category": "general",
"text": "CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQL script that is used when the database is restored.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-0868",
"url": "https://www.suse.com/security/cve/CVE-2012-0868"
},
{
"category": "external",
"summary": "SUSE Bug 701489 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/701489"
},
{
"category": "external",
"summary": "SUSE Bug 749299 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749299"
},
{
"category": "external",
"summary": "SUSE Bug 749301 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749301"
},
{
"category": "external",
"summary": "SUSE Bug 749303 for CVE-2012-0868",
"url": "https://bugzilla.suse.com/749303"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-0868"
},
{
"cve": "CVE-2012-2143",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2143"
}
],
"notes": [
{
"category": "general",
"text": "The crypt_des (aka DES-based crypt) function in FreeBSD before 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contains a 0x80 character, which makes it easier for context-dependent attackers to obtain access via an authentication attempt with an initial substring of the intended password, as demonstrated by a Unicode password.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2143",
"url": "https://www.suse.com/security/cve/CVE-2012-2143"
},
{
"category": "external",
"summary": "SUSE Bug 766797 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766797"
},
{
"category": "external",
"summary": "SUSE Bug 766798 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766798"
},
{
"category": "external",
"summary": "SUSE Bug 766799 for CVE-2012-2143",
"url": "https://bugzilla.suse.com/766799"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-2143"
},
{
"cve": "CVE-2012-2655",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-2655"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURITY DEFINER or (2) SET attributes to a procedural language\u0027s call handler.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-2655",
"url": "https://www.suse.com/security/cve/CVE-2012-2655"
},
{
"category": "external",
"summary": "SUSE Bug 765069 for CVE-2012-2655",
"url": "https://bugzilla.suse.com/765069"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2012-2655"
},
{
"cve": "CVE-2012-3488",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3488"
}
],
"notes": [
{
"category": "general",
"text": "The libxslt support in contrib/xml2 in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 does not properly restrict access to files and URLs, which allows remote authenticated users to modify data, obtain sensitive information, or trigger outbound traffic to arbitrary external hosts by leveraging (1) stylesheet commands that are permitted by the libxslt security options or (2) an xslt_process feature, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3488",
"url": "https://www.suse.com/security/cve/CVE-2012-3488"
},
{
"category": "external",
"summary": "SUSE Bug 776523 for CVE-2012-3488",
"url": "https://bugzilla.suse.com/776523"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3488"
},
{
"cve": "CVE-2012-3489",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2012-3489"
}
],
"notes": [
{
"category": "general",
"text": "The xml_parse function in the libxml2 support in the core server component in PostgreSQL 8.3 before 8.3.20, 8.4 before 8.4.13, 9.0 before 9.0.9, and 9.1 before 9.1.5 allows remote authenticated users to determine the existence of arbitrary files or URLs, and possibly obtain file or URL content that triggers a parsing error, via an XML value that refers to (1) a DTD or (2) an entity, related to an XML External Entity (aka XXE) issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2012-3489",
"url": "https://www.suse.com/security/cve/CVE-2012-3489"
},
{
"category": "external",
"summary": "SUSE Bug 776524 for CVE-2012-3489",
"url": "https://bugzilla.suse.com/776524"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2012-3489"
},
{
"cve": "CVE-2013-0255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-0255"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.3, 9.1.x before 9.1.8, 9.0.x before 9.0.12, 8.4.x before 8.4.16, and 8.3.x before 8.3.23 does not properly declare the enum_recv function in backend/utils/adt/enum.c, which causes it to be invoked with incorrect arguments and allows remote authenticated users to cause a denial of service (server crash) or read sensitive process memory via a crafted SQL command, which triggers an array index error and an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-0255",
"url": "https://www.suse.com/security/cve/CVE-2013-0255"
},
{
"category": "external",
"summary": "SUSE Bug 802679 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/802679"
},
{
"category": "external",
"summary": "SUSE Bug 803057 for CVE-2013-0255",
"url": "https://bugzilla.suse.com/803057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-0255"
},
{
"cve": "CVE-2013-1899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1899"
}
],
"notes": [
{
"category": "general",
"text": "Argument injection vulnerability in PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, and 9.0.x before 9.0.13 allows remote attackers to cause a denial of service (file corruption), and allows remote authenticated users to modify configuration settings and execute arbitrary code, via a connection request using a database name that begins with a \"-\" (hyphen).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1899",
"url": "https://www.suse.com/security/cve/CVE-2013-1899"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1899",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1899"
},
{
"cve": "CVE-2013-1900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1900"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the \"contrib/pgcrypto functions.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1900",
"url": "https://www.suse.com/security/cve/CVE-2013-1900"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1900",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1900"
},
{
"cve": "CVE-2013-1901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1901"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL 9.2.x before 9.2.4 and 9.1.x before 9.1.9 does not properly check REPLICATION privileges, which allows remote authenticated users to bypass intended backup restrictions by calling the (1) pg_start_backup or (2) pg_stop_backup functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1901",
"url": "https://www.suse.com/security/cve/CVE-2013-1901"
},
{
"category": "external",
"summary": "SUSE Bug 812525 for CVE-2013-1901",
"url": "https://bugzilla.suse.com/812525"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-1901"
},
{
"cve": "CVE-2014-0060",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0060"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly enforce the ADMIN OPTION restriction, which allows remote authenticated members of a role to add or remove arbitrary users to that role by calling the SET ROLE command before the associated GRANT command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0060",
"url": "https://www.suse.com/security/cve/CVE-2014-0060"
},
{
"category": "external",
"summary": "SUSE Bug 864845 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864845"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0060",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0060"
},
{
"cve": "CVE-2014-0061",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0061"
}
],
"notes": [
{
"category": "general",
"text": "The validator functions for the procedural languages (PLs) in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to gain privileges via a function that is (1) defined in another language or (2) not allowed to be directly called by the user due to permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0061",
"url": "https://www.suse.com/security/cve/CVE-2014-0061"
},
{
"category": "external",
"summary": "SUSE Bug 864846 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864846"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0061",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0061"
},
{
"cve": "CVE-2014-0062",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0062"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in the (1) CREATE INDEX and (2) unspecified ALTER TABLE commands in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allows remote authenticated users to create an unauthorized index or read portions of unauthorized tables by creating or deleting a table with the same name during the timing window.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0062",
"url": "https://www.suse.com/security/cve/CVE-2014-0062"
},
{
"category": "external",
"summary": "SUSE Bug 864847 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864847"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0062",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0062"
},
{
"cve": "CVE-2014-0063",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0063"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via vectors related to an incorrect MAXDATELEN constant and datetime values involving (1) intervals, (2) timestamps, or (3) timezones, a different vulnerability than CVE-2014-0065.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0063",
"url": "https://www.suse.com/security/cve/CVE-2014-0063"
},
{
"category": "external",
"summary": "SUSE Bug 864850 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864850"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0063",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0063"
},
{
"cve": "CVE-2014-0064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0064"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, which trigger a buffer overflow. NOTE: this identifier has been SPLIT due to different affected versions; use CVE-2014-2669 for the hstore vector.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0064",
"url": "https://www.suse.com/security/cve/CVE-2014-0064"
},
{
"category": "external",
"summary": "SUSE Bug 864851 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864851"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 871307 for CVE-2014-0064",
"url": "https://bugzilla.suse.com/871307"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0064"
},
{
"cve": "CVE-2014-0065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0065"
}
],
"notes": [
{
"category": "general",
"text": "Multiple buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact and attack vectors, a different vulnerability than CVE-2014-0063.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0065",
"url": "https://www.suse.com/security/cve/CVE-2014-0065"
},
{
"category": "external",
"summary": "SUSE Bug 864852 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864852"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0065",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0065"
},
{
"cve": "CVE-2014-0066",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0066"
}
],
"notes": [
{
"category": "general",
"text": "The chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library function, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0066",
"url": "https://www.suse.com/security/cve/CVE-2014-0066"
},
{
"category": "external",
"summary": "SUSE Bug 864853 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864853"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0066",
"url": "https://bugzilla.suse.com/864856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0066"
},
{
"cve": "CVE-2014-0067",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0067"
}
],
"notes": [
{
"category": "general",
"text": "The \"make check\" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging access to this cluster.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0067",
"url": "https://www.suse.com/security/cve/CVE-2014-0067"
},
{
"category": "external",
"summary": "SUSE Bug 864856 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/864856"
},
{
"category": "external",
"summary": "SUSE Bug 872783 for CVE-2014-0067",
"url": "https://bugzilla.suse.com/872783"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-0067"
},
{
"cve": "CVE-2015-3165",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3165"
}
],
"notes": [
{
"category": "general",
"text": "Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 allows remote attackers to cause a denial of service (crash) by closing an SSL session at a time when the authentication timeout will expire during the session shutdown sequence.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3165",
"url": "https://www.suse.com/security/cve/CVE-2015-3165"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3165",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3165"
},
{
"cve": "CVE-2015-3166",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3166"
}
],
"notes": [
{
"category": "general",
"text": "The snprintf implementation in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 does not properly handle system-call errors, which allows attackers to obtain sensitive information or have other unspecified impact via unknown vectors, as demonstrated by an out-of-memory error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3166",
"url": "https://www.suse.com/security/cve/CVE-2015-3166"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3166",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3166"
},
{
"cve": "CVE-2015-3167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3167"
}
],
"notes": [
{
"category": "general",
"text": "contrib/pgcrypto in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before 9.2.11, 9.3.x before 9.3.7, and 9.4.x before 9.4.2 uses different error responses when an incorrect key is used, which makes it easier for attackers to obtain the key via a brute force attack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3167",
"url": "https://www.suse.com/security/cve/CVE-2015-3167"
},
{
"category": "external",
"summary": "SUSE Bug 931972 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931972"
},
{
"category": "external",
"summary": "SUSE Bug 931973 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931973"
},
{
"category": "external",
"summary": "SUSE Bug 931974 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/931974"
},
{
"category": "external",
"summary": "SUSE Bug 932040 for CVE-2015-3167",
"url": "https://bugzilla.suse.com/932040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2015-3167"
},
{
"cve": "CVE-2015-5288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5288"
}
],
"notes": [
{
"category": "general",
"text": "The crypt function in contrib/pgcrypto in PostgreSQL before 9.0.23, 9.1.x before 9.1.19, 9.2.x before 9.2.14, 9.3.x before 9.3.10, and 9.4.x before 9.4.5 allows attackers to cause a denial of service (server crash) or read arbitrary server memory via a \"too-short\" salt.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5288",
"url": "https://www.suse.com/security/cve/CVE-2015-5288"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5288",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-5288"
},
{
"cve": "CVE-2015-5289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5289"
}
],
"notes": [
{
"category": "general",
"text": "Multiple stack-based buffer overflows in json parsing in PostgreSQL before 9.3.x before 9.3.10 and 9.4.x before 9.4.5 allow attackers to cause a denial of service (server crash) via unspecified vectors, which are not properly handled in (1) json or (2) jsonb values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5289",
"url": "https://www.suse.com/security/cve/CVE-2015-5289"
},
{
"category": "external",
"summary": "SUSE Bug 949669 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949669"
},
{
"category": "external",
"summary": "SUSE Bug 949670 for CVE-2015-5289",
"url": "https://bugzilla.suse.com/949670"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-5289"
},
{
"cve": "CVE-2016-0766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0766"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0766",
"url": "https://www.suse.com/security/cve/CVE-2016-0766"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0766",
"url": "https://bugzilla.suse.com/978323"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0766"
},
{
"cve": "CVE-2016-0773",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-0773"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 allows remote attackers to cause a denial of service (infinite loop or buffer overflow and crash) via a large Unicode character range in a regular expression.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-0773",
"url": "https://www.suse.com/security/cve/CVE-2016-0773"
},
{
"category": "external",
"summary": "SUSE Bug 966435 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966435"
},
{
"category": "external",
"summary": "SUSE Bug 966436 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/966436"
},
{
"category": "external",
"summary": "SUSE Bug 978323 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/978323"
},
{
"category": "external",
"summary": "SUSE Bug 983246 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/983246"
},
{
"category": "external",
"summary": "SUSE Bug 986409 for CVE-2016-0773",
"url": "https://bugzilla.suse.com/986409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-0773"
},
{
"cve": "CVE-2016-2193",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2193"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.5.x before 9.5.2 does not properly maintain row-security status in cached plans, which might allow attackers to bypass intended access restrictions by leveraging a session that performs queries as more than one role.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2193",
"url": "https://www.suse.com/security/cve/CVE-2016-2193"
},
{
"category": "external",
"summary": "SUSE Bug 978456 for CVE-2016-2193",
"url": "https://bugzilla.suse.com/978456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2193"
},
{
"cve": "CVE-2016-3065",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-3065"
}
],
"notes": [
{
"category": "general",
"text": "The (1) brin_page_type and (2) brin_metapage_info functions in the pageinspect extension in PostgreSQL before 9.5.x before 9.5.2 allows attackers to bypass intended access restrictions and consequently obtain sensitive server memory information or cause a denial of service (server crash) via a crafted bytea value in a BRIN index page.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-3065",
"url": "https://www.suse.com/security/cve/CVE-2016-3065"
},
{
"category": "external",
"summary": "SUSE Bug 978456 for CVE-2016-3065",
"url": "https://bugzilla.suse.com/978456"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-3065"
},
{
"cve": "CVE-2016-5423",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5423"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 allow remote authenticated users to cause a denial of service (NULL pointer dereference and server crash), obtain sensitive memory information, or possibly execute arbitrary code via (1) a CASE expression within the test value subexpression of another CASE or (2) inlining of an SQL function that implements the equality operator used for a CASE expression involving values of different types.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5423",
"url": "https://www.suse.com/security/cve/CVE-2016-5423"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993454 for CVE-2016-5423",
"url": "https://bugzilla.suse.com/993454"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5423"
},
{
"cve": "CVE-2016-5424",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5424"
}
],
"notes": [
{
"category": "general",
"text": "PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4 might allow remote authenticated users with the CREATEDB or CREATEROLE role to gain superuser privileges via a (1) \" (double quote), (2) \\ (backslash), (3) carriage return, or (4) newline character in a (a) database or (b) role name that is mishandled during an administrative operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5424",
"url": "https://www.suse.com/security/cve/CVE-2016-5424"
},
{
"category": "external",
"summary": "SUSE Bug 1041981 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1041981"
},
{
"category": "external",
"summary": "SUSE Bug 1042497 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1042497"
},
{
"category": "external",
"summary": "SUSE Bug 1052683 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/1052683"
},
{
"category": "external",
"summary": "SUSE Bug 993453 for CVE-2016-5424",
"url": "https://bugzilla.suse.com/993453"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libecpg6-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-32bit-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:libpq5-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-contrib-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-devel-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-docs-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plperl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-plpython-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-pltcl-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-server-9.5.4-1.2.x86_64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.aarch64",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.ppc64le",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.s390x",
"openSUSE Tumbleweed:postgresql95-test-9.5.4-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5424"
}
]
}
FKIE_CVE-2009-4034
Vulnerability from fkie_nvd - Published: 2009-12-15 18:30 - Updated: 2025-04-09 00:30
Severity ?
Summary
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html | ||
| secalert@redhat.com | http://marc.info/?l=bugtraq&m=134124585221119&w=2 | ||
| secalert@redhat.com | http://osvdb.org/61038 | ||
| secalert@redhat.com | http://secunia.com/advisories/37663 | ||
| secalert@redhat.com | http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012 | ||
| secalert@redhat.com | http://www.mandriva.com/security/advisories?name=MDVSA-2009:333 | ||
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-7-4-27.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-8-0-23.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-8-1-19.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-8-2-15.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-8-3-9.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/docs/current/static/release-8-4-2.html | Patch, Vendor Advisory | |
| secalert@redhat.com | http://www.postgresql.org/support/security.html | Vendor Advisory | |
| secalert@redhat.com | http://www.securityfocus.com/archive/1/509917/100/0/threaded | ||
| secalert@redhat.com | http://www.securityfocus.com/bid/37334 | ||
| secalert@redhat.com | http://www.securitytracker.com/id?1023325 | ||
| secalert@redhat.com | http://www.vupen.com/english/advisories/2009/3519 | ||
| secalert@redhat.com | https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html | ||
| secalert@redhat.com | https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://marc.info/?l=bugtraq&m=134124585221119&w=2 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://osvdb.org/61038 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/37663 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDVSA-2009:333 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-7-4-27.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-8-0-23.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-8-1-19.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-8-2-15.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-8-3-9.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/docs/current/static/release-8-4-2.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.postgresql.org/support/security.html | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/archive/1/509917/100/0/threaded | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/37334 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id?1023325 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2009/3519 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| postgresql | postgresql | 7.4.1 | |
| postgresql | postgresql | 7.4.2 | |
| postgresql | postgresql | 7.4.3 | |
| postgresql | postgresql | 7.4.4 | |
| postgresql | postgresql | 7.4.5 | |
| postgresql | postgresql | 7.4.6 | |
| postgresql | postgresql | 7.4.7 | |
| postgresql | postgresql | 7.4.8 | |
| postgresql | postgresql | 7.4.9 | |
| postgresql | postgresql | 7.4.10 | |
| postgresql | postgresql | 7.4.11 | |
| postgresql | postgresql | 7.4.12 | |
| postgresql | postgresql | 7.4.13 | |
| postgresql | postgresql | 7.4.14 | |
| postgresql | postgresql | 7.4.15 | |
| postgresql | postgresql | 7.4.16 | |
| postgresql | postgresql | 7.4.17 | |
| postgresql | postgresql | 7.4.18 | |
| postgresql | postgresql | 7.4.19 | |
| postgresql | postgresql | 7.4.20 | |
| postgresql | postgresql | 7.4.21 | |
| postgresql | postgresql | 7.4.22 | |
| postgresql | postgresql | 7.4.23 | |
| postgresql | postgresql | 7.4.24 | |
| postgresql | postgresql | 7.4.25 | |
| postgresql | postgresql | 7.4.26 | |
| postgresql | postgresql | 8.0.0 | |
| postgresql | postgresql | 8.0.1 | |
| postgresql | postgresql | 8.0.2 | |
| postgresql | postgresql | 8.0.3 | |
| postgresql | postgresql | 8.0.4 | |
| postgresql | postgresql | 8.0.5 | |
| postgresql | postgresql | 8.0.6 | |
| postgresql | postgresql | 8.0.7 | |
| postgresql | postgresql | 8.0.8 | |
| postgresql | postgresql | 8.0.9 | |
| postgresql | postgresql | 8.0.10 | |
| postgresql | postgresql | 8.0.11 | |
| postgresql | postgresql | 8.0.12 | |
| postgresql | postgresql | 8.0.13 | |
| postgresql | postgresql | 8.0.14 | |
| postgresql | postgresql | 8.0.15 | |
| postgresql | postgresql | 8.0.16 | |
| postgresql | postgresql | 8.0.17 | |
| postgresql | postgresql | 8.0.18 | |
| postgresql | postgresql | 8.0.19 | |
| postgresql | postgresql | 8.0.20 | |
| postgresql | postgresql | 8.0.21 | |
| postgresql | postgresql | 8.0.22 | |
| postgresql | postgresql | 8.1.0 | |
| postgresql | postgresql | 8.1.1 | |
| postgresql | postgresql | 8.1.2 | |
| postgresql | postgresql | 8.1.3 | |
| postgresql | postgresql | 8.1.4 | |
| postgresql | postgresql | 8.1.5 | |
| postgresql | postgresql | 8.1.6 | |
| postgresql | postgresql | 8.1.7 | |
| postgresql | postgresql | 8.1.8 | |
| postgresql | postgresql | 8.1.9 | |
| postgresql | postgresql | 8.1.10 | |
| postgresql | postgresql | 8.1.11 | |
| postgresql | postgresql | 8.1.12 | |
| postgresql | postgresql | 8.1.13 | |
| postgresql | postgresql | 8.1.14 | |
| postgresql | postgresql | 8.1.15 | |
| postgresql | postgresql | 8.1.16 | |
| postgresql | postgresql | 8.1.17 | |
| postgresql | postgresql | 8.1.18 | |
| postgresql | postgresql | 8.2 | |
| postgresql | postgresql | 8.2.1 | |
| postgresql | postgresql | 8.2.2 | |
| postgresql | postgresql | 8.2.3 | |
| postgresql | postgresql | 8.2.4 | |
| postgresql | postgresql | 8.2.5 | |
| postgresql | postgresql | 8.2.6 | |
| postgresql | postgresql | 8.2.7 | |
| postgresql | postgresql | 8.2.8 | |
| postgresql | postgresql | 8.2.9 | |
| postgresql | postgresql | 8.2.10 | |
| postgresql | postgresql | 8.2.11 | |
| postgresql | postgresql | 8.2.12 | |
| postgresql | postgresql | 8.2.13 | |
| postgresql | postgresql | 8.2.14 | |
| postgresql | postgresql | 8.3.1 | |
| postgresql | postgresql | 8.3.2 | |
| postgresql | postgresql | 8.3.3 | |
| postgresql | postgresql | 8.3.4 | |
| postgresql | postgresql | 8.3.5 | |
| postgresql | postgresql | 8.3.6 | |
| postgresql | postgresql | 8.3.7 | |
| postgresql | postgresql | 8.3.8 | |
| postgresql | postgresql | 8.4.1 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0C8DDD98-9A2D-402D-9172-F3C4C4C97FEF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "20C8302B-631A-4DF7-839B-C6F3CC39E000",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "FB318EB9-1B49-452A-92CF-89D9BA990AB9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "5913A53B-7B72-4CBD-ADAE-318333EB8B7B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "815E58C0-327D-4F14-B496-05FC8179627E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "3EF2D056-5120-4F98-8343-4EC31F962CFE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.7:*:*:*:*:*:*:*",
"matchCriteriaId": "516E0E86-3D8A-43F9-9DD5-865F5C889FC4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.8:*:*:*:*:*:*:*",
"matchCriteriaId": "5A7A9D3C-4BB6-4974-BF96-6E6728196F4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "486EDE1B-37E0-4DDF-BFC9-C8C8945D5E2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A7FC7F18-B227-4C46-9A33-FB34DDE456CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.11:*:*:*:*:*:*:*",
"matchCriteriaId": "BCDB903F-0C89-4E65-857E-553CF9C192E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.12:*:*:*:*:*:*:*",
"matchCriteriaId": "F6BF8B1E-68F7-4F27-AD1F-FA02B256BDAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.13:*:*:*:*:*:*:*",
"matchCriteriaId": "CD0DEB63-CA70-44C1-9491-E0790D1A8E21",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.14:*:*:*:*:*:*:*",
"matchCriteriaId": "DA8E73E5-BA41-4FA2-8457-803A97FB00C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.15:*:*:*:*:*:*:*",
"matchCriteriaId": "4C9B64CA-778F-405D-A441-34599246A3F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.16:*:*:*:*:*:*:*",
"matchCriteriaId": "4975D8ED-7DCB-430F-98E1-DB165D6DA7E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.17:*:*:*:*:*:*:*",
"matchCriteriaId": "CCBF8CDE-5E75-4DF8-AE1A-B7377953917A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.18:*:*:*:*:*:*:*",
"matchCriteriaId": "8AC4A04B-738C-4018-BB2F-FBEC8746200C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.19:*:*:*:*:*:*:*",
"matchCriteriaId": "36A2824A-A43F-436B-B9DA-B7E283A00426",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.20:*:*:*:*:*:*:*",
"matchCriteriaId": "DBBAF0F1-7A70-41DC-89A7-2EF9851E4FC0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.21:*:*:*:*:*:*:*",
"matchCriteriaId": "4A12EC07-1938-41BF-BCFC-C269668F1EBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.22:*:*:*:*:*:*:*",
"matchCriteriaId": "14D7CE0D-510C-46BB-8896-42DD84F57017",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.23:*:*:*:*:*:*:*",
"matchCriteriaId": "1AA5858F-7DFF-460D-B862-83DD636D0A36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.24:*:*:*:*:*:*:*",
"matchCriteriaId": "4394564D-131D-41C8-AE3A-BFF44779F27B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.25:*:*:*:*:*:*:*",
"matchCriteriaId": "2CCC06DB-1C93-4DE5-AEDC-03E532DA89F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:7.4.26:*:*:*:*:*:*:*",
"matchCriteriaId": "62133846-C0C8-473A-A842-2A8AF50C2FD4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B45F3BF0-9EB6-4A06-B6F7-DE95DD13EFBF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "91D1232E-4D0A-4BDC-99F6-25AEE014E9AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "105E9F52-D17E-4A0B-9C46-FD32A930B1E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "0DE2055D-AAA4-4A6A-918F-349A9749AF09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "C12409B2-161B-4F78-B7AD-3CF69DDCC574",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "DD2F1DA4-6625-469D-988B-5457B68851A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "870F4348-6001-4C2F-A547-61964074E7C0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "E2E26D52-D95A-4547-BE6E-4F142F54A624",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "4AAB2D1D-BE61-4D7C-B305-58B4F4126620",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "2A5F8D8B-34C5-4EBC-BB20-4D11191238B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "E260F1F9-0068-4289-A8E8-C30220C2E1F7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "EEE16023-9A5E-46D5-B597-E6885C224786",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "84D64D74-9645-4CB7-B710-4FC26FB65B37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "BCF2794E-6B48-496B-B6CA-CDC7FC2160CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "8EB12063-F487-4067-A7A5-4482E19D8D14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "51AE5B72-DDC5-4207-B467-A9583F3AC781",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "99398182-C98C-4B16-9DBA-B1980BDFFA54",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "E6FEC1DE-A2A5-4945-95B8-75FDC9ED3B63",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.18:*:*:*:*:*:*:*",
"matchCriteriaId": "264AB44D-D014-4734-B538-09E5834EC30B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.19:*:*:*:*:*:*:*",
"matchCriteriaId": "8D5DD1E6-E190-4D75-9D27-5EFB2544B158",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "3CD7F8CA-09B3-4038-B8B0-2D62A77F2478",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.21:*:*:*:*:*:*:*",
"matchCriteriaId": "64815C3D-1A1A-4525-9BCD-D89BAEACC950",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.0.22:*:*:*:*:*:*:*",
"matchCriteriaId": "7B61AFB3-818D-4A82-8C80-9CA9A1DCC090",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C0B9704E-4BA9-4389-83AB-62BC65F81D9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FEEC35A2-B17C-46EC-8697-9E03568339BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "00562C18-DD81-4B09-AF93-739AF8757A12",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6B52D093-7867-4FE8-B055-D8190103A1E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.4:*:*:*:*:*:*:*",
"matchCriteriaId": "DF1A06EE-26BD-4CDA-AEB9-01124FC37E37",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "FF855730-C61C-4FDC-96CB-57775A903421",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "D93296E1-AEA2-443E-B9AA-D70535DDD093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.7:*:*:*:*:*:*:*",
"matchCriteriaId": "992C3EC0-4C12-4FB0-8844-9EFB91DA95E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.8:*:*:*:*:*:*:*",
"matchCriteriaId": "8E3EBF1D-D5BD-4A22-B76A-2BAB21534E70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.9:*:*:*:*:*:*:*",
"matchCriteriaId": "02DC4E8A-A728-4734-B67A-C58C37DA90C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.10:*:*:*:*:*:*:*",
"matchCriteriaId": "D59B0E32-9E71-4E41-BBAF-7A20008E43E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CA6511DE-AF52-4953-8394-37D24A732538",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.12:*:*:*:*:*:*:*",
"matchCriteriaId": "51B93DC5-F632-47A5-9C58-52429B034D1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.13:*:*:*:*:*:*:*",
"matchCriteriaId": "D011C676-47D3-4D78-9C58-749AF6C7DBDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.14:*:*:*:*:*:*:*",
"matchCriteriaId": "DFD5BE40-CF55-4C0E-BD89-5CC7DF41F6BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.15:*:*:*:*:*:*:*",
"matchCriteriaId": "7C1EE1C3-4472-4CE2-AB60-9535C1C4AF8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.16:*:*:*:*:*:*:*",
"matchCriteriaId": "3B903334-2F67-4725-8277-6913E03BEFC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.17:*:*:*:*:*:*:*",
"matchCriteriaId": "2F6E9049-B347-4940-B523-DBB96DBFE731",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.1.18:*:*:*:*:*:*:*",
"matchCriteriaId": "6F1AD77C-BD28-43C9-B2CA-F60C1AD9D200",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7213327F-6909-43A7-952E-11600C28D4E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "10EF0EA6-C8B6-40A7-A3AE-8639CA94D5C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "D9F645F3-9767-4FD8-94EB-1096DF24E6C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "C342A823-EF6F-4557-9F9E-D8893EA4C2BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "B85A443F-0802-412F-9AEE-3525311C93D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "06253BA8-7F1E-4C79-9B2E-197307A627F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.6:*:*:*:*:*:*:*",
"matchCriteriaId": "2A213AB8-A5FE-4062-B895-2FC4B19F60A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.7:*:*:*:*:*:*:*",
"matchCriteriaId": "9A3F083E-59A8-41B1-826F-2CA39BD425C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.8:*:*:*:*:*:*:*",
"matchCriteriaId": "DE49E2D5-8EAC-49C7-B704-E626FBE7EC35",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.9:*:*:*:*:*:*:*",
"matchCriteriaId": "A5059B2F-B588-463E-8E96-BC9DA129C12E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.10:*:*:*:*:*:*:*",
"matchCriteriaId": "C919AF97-9713-44F8-B742-89C438DB0B48",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.11:*:*:*:*:*:*:*",
"matchCriteriaId": "400BBC62-5D03-465B-A864-9CD479B963F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.12:*:*:*:*:*:*:*",
"matchCriteriaId": "BC8C96F7-7F85-4E47-A05F-15E3C70AF583",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.13:*:*:*:*:*:*:*",
"matchCriteriaId": "6C236CF1-72C0-4C3D-AE04-B67E3F18EEC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.2.14:*:*:*:*:*:*:*",
"matchCriteriaId": "ECC98D47-8B3C-4DE6-8C45-F5B92266027F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "05AD5D33-86F4-4BFF-BA84-02AA1347BEEB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "02FDCF30-D0F7-48AA-9633-9CC060495F47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "788975F6-B3F1-4C21-B963-6BA59F14B71C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "E6713D96-338B-4467-9F05-3153997F62E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "01EB1A77-92AD-47FB-8290-D05C9B6C19C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "74857259-30C7-422D-A24D-BE1E33F09466",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "CD80066B-787E-496B-88FD-F0AE291468C5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "88C9F0AB-A125-4DCD-A02B-E04D4D95FB5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:postgresql:postgresql:8.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "5C991F71-1E27-47A6-97DC-424FC3EF6011",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408."
},
{
"lang": "es",
"value": "PostgreSQL v7.4.x anteriores a v7.4.27, v8.0.x anteriores a v8.0.23, v8.1.x anteriores a v8.1.19, v8.2.x anteriores a v8.2.15, v8.3.x anteriores a v8.3.9, y v8.4.x anteriores a v8.4.2 no maneja adecuadamente un caracter \u0027/0\u0027 en el nombre de dominio en el campo \"subject\" del Nombre Com\u00fan (CN) de un certificado X.509, lo que permite (1) a atacantes man-in-the-middle falsificar a conveniencia los servidores PostgreSQL basados en SSL a trav\u00e9s de un certificado de servidor manipulado obtenido a trav\u00e9s de una autoridad certificadora legitima, y (2)permite a atacantes remotos evitar las restricciones cliente-hostname a trav\u00e9s de un certificado manipulado obtenido a trav\u00e9s de una autoridad certificadora legitima, un asunto relacionado con CVE-2009-2408."
}
],
"id": "CVE-2009-4034",
"lastModified": "2025-04-09T00:30:58.490",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2009-12-15T18:30:01.420",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"source": "secalert@redhat.com",
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"source": "secalert@redhat.com",
"url": "http://osvdb.org/61038"
},
{
"source": "secalert@redhat.com",
"url": "http://secunia.com/advisories/37663"
},
{
"source": "secalert@redhat.com",
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
},
{
"source": "secalert@redhat.com",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://www.postgresql.org/support/security.html"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/37334"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securitytracker.com/id?1023325"
},
{
"source": "secalert@redhat.com",
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"source": "secalert@redhat.com",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"source": "secalert@redhat.com",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://osvdb.org/61038"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/37663"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://www.postgresql.org/support/security.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/37334"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1023325"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2009/3519"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vendorComments": [
{
"comment": "This issue is only security-relevant in PostgreSQL versions 8.4 and later as previous versions did not compare the connection host name with the certificate CommonName at all. Client certificate authentication was introduced in version 8.4. Red Hat Enterprise Linux 5 and earlier provided PostgreSQL versions 8.1.x and earlier, and are thus not affected by this issue.\n",
"lastModified": "2010-01-07T00:00:00",
"organization": "Red Hat"
}
],
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-310"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CERTA-2009-AVI-546
Vulnerability from certfr_avis - Published: 2009-12-16 - Updated: 2010-01-07
Plusieurs vulnérabilités affectent PostgreSQL et permettent à un utilisateur malveillant de contourner la politique de sécurité ou d'élever ses privilèges.
Description
Plusieurs vulnérabilités sont présentes dans PostgreSQL :
- (CVE-2009-4034) la validation des certificats dans lesquels le nom ou le nom alternatif comportent un caractère nul permet à un utilisateur malveillant de contourner la politique de sécurité ;
- (CVE-2009-4136) dans certaines conditions, le changement de l'état d'une session permet à un utilisateur malveillant d'élever ses privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Toutes les versions de PostgreSQL.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eToutes les versions de PostgreSQL.\u003c/p\u003e",
"content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s sont pr\u00e9sentes dans PostgreSQL\u00a0:\n\n- (CVE-2009-4034) la validation des certificats dans lesquels le nom\n ou le nom alternatif comportent un caract\u00e8re nul permet \u00e0 un\n utilisateur malveillant de contourner la politique de s\u00e9curit\u00e9\u00a0;\n- (CVE-2009-4136) dans certaines conditions, le changement de l\u0027\u00e9tat\n d\u0027une session permet \u00e0 un utilisateur malveillant d\u0027\u00e9lever ses\n privil\u00e8ges.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2009-4136",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4136"
},
{
"name": "CVE-2009-4034",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-4034"
}
],
"initial_release_date": "2009-12-16T00:00:00",
"last_revision_date": "2010-01-07T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-876-1 du 03 janvier 2010 :",
"url": "http://www.ubuntu.com/usn/USN-876-1"
},
{
"title": "Bulletin de s\u00e9curit\u00e9 de Debian DSA-1964 du 31 d\u00e9cembre 2009 :",
"url": "http://www.us.debian.org/security/2009/dsa-1964"
},
{
"title": "Site de t\u00e9l\u00e9chargement du projet PostgreSQL :",
"url": "http://www.postgresql.org/"
}
],
"reference": "CERTA-2009-AVI-546",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2009-12-16T00:00:00.000000"
},
{
"description": "Ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 Ubuntu et Debian.",
"revision_date": "2010-01-07T00:00:00.000000"
}
],
"risks": [
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s affectent PostgreSQL et permettent \u00e0 un\nutilisateur malveillant de contourner la politique de s\u00e9curit\u00e9 ou\nd\u0027\u00e9lever ses privil\u00e8ges.\n",
"title": "Vuln\u00e9rabilit\u00e9s dans PostgreSQL",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de version PostgreSQL du 14 d\u00e9cembre 2009",
"url": "http://www.postgresql.org/about/news.1170"
}
]
}
GHSA-6WGC-GV8J-FMPQ
Vulnerability from github – Published: 2022-05-02 03:50 – Updated: 2022-05-02 03:50
VLAI?
Details
PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.
{
"affected": [],
"aliases": [
"CVE-2009-4034"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2009-12-15T18:30:00Z",
"severity": "MODERATE"
},
"details": "PostgreSQL 7.4.x before 7.4.27, 8.0.x before 8.0.23, 8.1.x before 8.1.19, 8.2.x before 8.2.15, 8.3.x before 8.3.9, and 8.4.x before 8.4.2 does not properly handle a \u0027\\0\u0027 character in a domain name in the subject\u0027s Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based PostgreSQL servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended client-hostname restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.",
"id": "GHSA-6wgc-gv8j-fmpq",
"modified": "2022-05-02T03:50:59Z",
"published": "2022-05-02T03:50:59Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4034"
},
{
"type": "WEB",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01035.html"
},
{
"type": "WEB",
"url": "https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01056.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2010-01/msg00007.html"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=134124585221119\u0026w=2"
},
{
"type": "WEB",
"url": "http://osvdb.org/61038"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/37663"
},
{
"type": "WEB",
"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2010-0012"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2009:333"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-7-4-27.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-8-0-23.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-8-1-19.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-8-2-15.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-8-3-9.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/docs/current/static/release-8-4-2.html"
},
{
"type": "WEB",
"url": "http://www.postgresql.org/support/security.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/509917/100/0/threaded"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/37334"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id?1023325"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2009/3519"
}
],
"schema_version": "1.4.0",
"severity": []
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…