vulnerability

Alpine Linux: CVE-2016-0766: postgresql Security issues

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	Feb 17, 2016	Aug 30, 2017	Oct 30, 2017

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

Feb 17, 2016

Added

Aug 30, 2017

Modified

Oct 30, 2017

Description

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

Solution

alpine-linux-upgrade-postgresql

References

ALPINE-5119
ALPINE-5120
ALPINE-5121
ALPINE-5122
BID-83184
CVE-2016-0766
https://attackerkb.com/topics/CVE-2016-0766
DEBIAN-DSA-3475
DEBIAN-DSA-3476

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report