RedHatRHSA-2007:0068(RHSA-2007:0068) Moderate: postgresql security update
0.024 Low
EPSS
Percentile
89.9%
PostgreSQL is an advanced Object-Relational database management system
(DBMS).
Two flaws were found in the way the PostgreSQL server handles certain
SQL-language functions. An authenticated user could execute a sequence of
commands which could crash the PostgreSQL server or possibly read from
arbitrary memory locations. A user would need to have permissions to drop
and add database tables to be able to exploit these issues (CVE-2007-0555,
CVE-2007-0556).
Several denial of service flaws were found in the PostgreSQL server. An
authenticated user could execute certain SQL commands which could crash the
PostgreSQL server (CVE-2006-5540, CVE-2006-5541, CVE-2006-5542).
Users of PostgreSQL should upgrade to these updated packages containing
PostgreSQL version 8.1.8 which corrects these issues.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | s390x | postgresql-devel | < 8.1.8-1.el5 | postgresql-devel-8.1.8-1.el5.s390x.rpm |
| RedHat | 5 | i386 | postgresql-devel | < 8.1.8-1.el5 | postgresql-devel-8.1.8-1.el5.i386.rpm |
| RedHat | 5 | ia64 | postgresql-tcl | < 8.1.8-1.el5 | postgresql-tcl-8.1.8-1.el5.ia64.rpm |
| RedHat | 5 | ia64 | postgresql-test | < 8.1.8-1.el5 | postgresql-test-8.1.8-1.el5.ia64.rpm |
| RedHat | 5 | ia64 | postgresql-python | < 8.1.8-1.el5 | postgresql-python-8.1.8-1.el5.ia64.rpm |
| RedHat | 5 | x86_64 | postgresql-server | < 8.1.8-1.el5 | postgresql-server-8.1.8-1.el5.x86_64.rpm |
| RedHat | 5 | x86_64 | postgresql-docs | < 8.1.8-1.el5 | postgresql-docs-8.1.8-1.el5.x86_64.rpm |
| RedHat | 5 | s390x | postgresql-libs | < 8.1.8-1.el5 | postgresql-libs-8.1.8-1.el5.s390x.rpm |
| RedHat | 5 | x86_64 | postgresql-test | < 8.1.8-1.el5 | postgresql-test-8.1.8-1.el5.x86_64.rpm |
| RedHat | 5 | s390 | postgresql-devel | < 8.1.8-1.el5 | postgresql-devel-8.1.8-1.el5.s390.rpm |
Related
