vulnerability

SUSE: CVE-2017-14798: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Nov 27, 2017	Nov 27, 2017	Feb 4, 2022

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Nov 27, 2017

Added

Nov 27, 2017

Modified

Feb 4, 2022

Description

A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.

Solutions

suse-upgrade-postgresqlsuse-upgrade-postgresql-contribsuse-upgrade-postgresql-develsuse-upgrade-postgresql-docssuse-upgrade-postgresql-initsuse-upgrade-postgresql-plperlsuse-upgrade-postgresql-plpythonsuse-upgrade-postgresql-pltclsuse-upgrade-postgresql-serversuse-upgrade-postgresql-server-develsuse-upgrade-postgresql-test

References

SUSE-SUSE-SU-2017:3107-1
NVD-CVE-2017-14798

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report