Lucene search
GoogleOSV:ALSA-2023:1576HistoryApr 04, 2023 - 12:00 a.m.
Moderate: postgresql:13 security update
2023-04-0400:00:00
Google
osv.dev
6
postgresql
database management
security update
cve-2022-2625
cve-2022-41862
memory disclosure
kerberos
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
6.3 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.5%
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
- postgresql: Extension scripts replace objects not belonging to the extension. (CVE-2022-2625)
- postgresql: Client memory disclosure when connecting with Kerberos to modified server (CVE-2022-41862)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
nessus
nessus
RHEL 8 : postgresql:13 (RHSA-2023:1576)
2023-04-05 00:00:00
CentOS 8 : postgresql:13 (CESA-2023:1576)
2023-04-04 00:00:00
Oracle Linux 8 : postgresql:13 (ELSA-2023-1576)
2023-04-05 00:00:00
almalinux
almalinux
Moderate: postgresql security update
2023-04-11 00:00:00
Moderate: postgresql:13 security update
2023-04-04 00:00:00
Low: libpq security update
2023-11-14 00:00:00
rocky
rocky
postgresql:13 security update
2023-04-06 15:52:43
postgresql:10 security update
2023-01-12 08:25:41
postgresql:12 security update
2022-10-25 07:32:37
osv
osv
Moderate: postgresql security update
2023-04-11 00:00:00
Moderate: postgresql:13 security update
2023-04-06 15:52:43
Low: libpq security update
2023-11-14 00:00:00
oraclelinux
oraclelinux
postgresql security update
2023-04-11 00:00:00
postgresql:13 security update
2023-04-05 00:00:00
libpq security update
2023-11-17 00:00:00
redhat
redhat
(RHSA-2023:1576) Moderate: postgresql:13 security update
2023-04-04 08:51:28
(RHSA-2023:1693) Moderate: postgresql security update
2023-04-11 13:44:20
(RHSA-2023:7016) Low: libpq security update
2023-11-14 08:42:45
altlinux
altlinux
Security fix for the ALT Linux 10 package postgresql14 version 14.7-alt1
2023-02-20 00:00:00
Security fix for the ALT Linux 9 package postgresql12-1C version 12.14-alt0.M90P.1
2023-02-28 00:00:00
Security fix for the ALT Linux 10 package postgresql13 version 13.10-alt1
2023-02-20 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0391-1)
2023-02-14 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0450-1)
2023-02-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:0479-1)
2023-03-28 00:00:00
debian
debian
[SECURITY] [DLA 3316-1] postgresql-11 security update
2023-02-10 13:33:02
[SECURITY] [DLA 3072-1] postgresql-11 security update
2022-08-11 16:01:45
cloudfoundry
cloudfoundry
USN-5906-1: PostgreSQL vulnerability | Cloud Foundry
2023-03-23 00:00:00
USN-5571-1: PostgreSQL vulnerability | Cloud Foundry
2022-09-29 00:00:00
prion
prion
Code injection
2023-03-03 16:15:00
Design/Logic Flaw
2022-08-18 19:15:00
cbl_mariner
cbl_mariner
CVE-2022-41862 affecting package postgresql for versions less than 14.11-1
2024-03-05 17:52:42
CVE-2022-41862 affecting package postgresql 12.15-1
2024-07-05 21:08:35
CVE-2022-2625 affecting package postgresql 12.8-1
2022-10-13 00:40:15
ibm
ibm
ubuntucve
ubuntucve
CVE-2022-41862
2023-02-10 00:00:00
CVE-2022-2625
2022-08-15 00:00:00
kaspersky
kaspersky
KLA20223 OSI vulnerability in PostgreSQL
2023-02-09 00:00:00
KLA15718 RCE vulnerability in PostgreSQL
2022-08-11 00:00:00
cgr
cgr
CVE-2022-41862 vulnerabilities
2024-05-19 03:07:16
ubuntu
ubuntu
PostgreSQL vulnerability
2023-03-02 00:00:00
PostgreSQL vulnerability
2022-08-18 00:00:00
mageia
mageia
Updated postgresql packages fix security vulnerability
2023-02-27 23:27:16
Updated postgresql packages fix security vulnerability
2022-08-29 08:07:41
cve
cve
CVE-2022-41862
2023-03-03 16:15:09
CVE-2022-2625
2022-08-18 19:15:14
wolfi
wolfi
CVE-2022-41862 vulnerabilities
2024-07-05 21:08:40
veracode
veracode
Information Disclosure
2023-02-11 23:04:31
Authorization Bypass
2022-08-16 21:28:46
nvd
nvd
CVE-2022-41862
2023-03-03 16:15:09
CVE-2022-2625
2022-08-18 19:15:14
cvelist
cvelist
CVE-2022-41862
2023-03-03 00:00:00
CVE-2022-2625
2022-08-18 00:00:00
freebsd
freebsd
redhatcve
redhatcve
CVE-2022-41862
2023-02-15 15:29:59
CVE-2022-2625
2022-08-18 05:17:10
alpinelinux
alpinelinux
CVE-2022-41862
2023-03-03 16:15:09
CVE-2022-2625
2022-08-18 19:15:14
debiancve
debiancve
CVE-2022-41862
2023-03-03 16:15:09
CVE-2022-2625
2022-08-18 19:15:14
suse
suse
Security update for postgresql10 (important)
2022-08-31 00:00:00
Security update for postgresql13 (important)
2022-09-01 00:00:00
Security update for postgresql12 (important)
2022-09-01 00:00:00
redos
redos
ROS-20221013-03
2022-10-13 00:00:00
broadcom
broadcom
PostgreSQL vulnerability in SANnav 2.2.0.2
2023-08-29 00:00:00
photon
photon
Low Photon OS Security Update - PHSA-2023-3.0-0531
2023-02-10 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0441
2022-08-23 00:00:00
8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
6.3 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.5%
Related for OSV:ALSA-2023:1576