vulnerability

Alpine Linux: CVE-2016-0766: postgresql Security issues

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	Feb 17, 2016	Aug 30, 2017	Oct 30, 2017

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

Feb 17, 2016

Added

Aug 30, 2017

Modified

Oct 30, 2017

Description

PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 does not properly restrict access to unspecified custom configuration settings (GUCS) for PL/Java, which allows attackers to gain privileges via unspecified vectors.

Solution

alpine-linux-upgrade-postgresql

References

ALPINE-5119
ALPINE-5120
ALPINE-5121
ALPINE-5122
BID-83184
CVE-2016-0766
https://attackerkb.com/topics/CVE-2016-0766
DEBIAN-DSA-3475
DEBIAN-DSA-3476

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today