Vulnerability & Exploit Database

Back to search

ELSA-2013-1475 Moderate: Oracle Linux postgresql and postgresql84 security update

Severity CVSS Published Added Modified
9 (AV:N/AC:M/Au:S/C:C/I:C/A:C) April 04, 2013 October 30, 2013 July 04, 2017

Description

PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

oracle-linux-upgrade-postgresql

Related Vulnerabilities