Vulnerability & Exploit Database

Back to search

ELSA-2014-0211 Important: Oracle Linux postgresql84 and postgresql security update

Severity CVSS Published Added Modified
9 (AV:N/AC:M/Au:S/C:C/I:C/A:C) April 04, 2013 February 26, 2014 April 11, 2019

Description

PostgreSQL 9.2.x before 9.2.4, 9.1.x before 9.1.9, 9.0.x before 9.0.13, and 8.4.x before 8.4.17, when using OpenSSL, generates insufficiently random numbers, which might allow remote authenticated users to have an unspecified impact via vectors related to the "contrib/pgcrypto functions."

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

oracle-linux-upgrade-postgresql

Related Vulnerabilities