Back to search

USN-1789-1: PostgreSQL vulnerabilities

Severity CVSS Published Added Modified
9 (AV:N/AC:M/Au:S/C:C/I:C/A:C) April 04, 2013 May 06, 2013 March 03, 2014

Available Exploits 

Description

PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

  • postgresql-8.4 on Ubuntu Linux 10.04

    Upgrade postgresql-8.4 for Ubuntu 10.04 LTS

    Use `apt-get upgrade` to upgrade postgresql-8.4 to the latest version

  • postgresql-9.1 on Ubuntu Linux 11.10

    Upgrade postgresql-9.1 for Ubuntu 11.10

    Use `apt-get upgrade` to upgrade postgresql-9.1 to the latest version

  • postgresql-9.1 on Ubuntu Linux 12.04

    Upgrade postgresql-9.1 for Ubuntu 12.04 LTS

    Use `apt-get upgrade` to upgrade postgresql-9.1 to the latest version

  • postgresql-9.1 on Ubuntu Linux 12.10

    Upgrade postgresql-9.1 for Ubuntu 12.10

    Use `apt-get upgrade` to upgrade postgresql-9.1 to the latest version

  • postgresql-8.3 on Ubuntu Linux 8.04

    Upgrade postgresql-8.3 for Ubuntu 8.04 LTS

    Use `apt-get upgrade` to upgrade postgresql-8.3 to the latest version

Related Vulnerabilities