vulnerability
SUSE: CVE-2017-7547: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | Aug 10, 2017 | Aug 23, 2017 | Jun 20, 2021 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
Aug 10, 2017
Added
Aug 23, 2017
Modified
Jun 20, 2021
Description
PostgreSQL versions before 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4 are vulnerable to authorization flaw allowing remote authenticated attackers to retrieve passwords from the user mappings defined by the foreign server owners without actually having the privileges to do so.
Solutions
suse-upgrade-libecpg6suse-upgrade-libpq5suse-upgrade-libpq5-32bitsuse-upgrade-postgresql10suse-upgrade-postgresql10-contribsuse-upgrade-postgresql10-develsuse-upgrade-postgresql10-docssuse-upgrade-postgresql10-plperlsuse-upgrade-postgresql10-plpythonsuse-upgrade-postgresql10-pltclsuse-upgrade-postgresql10-serversuse-upgrade-postgresql93suse-upgrade-postgresql93-contribsuse-upgrade-postgresql93-docssuse-upgrade-postgresql93-serversuse-upgrade-postgresql94suse-upgrade-postgresql94-contribsuse-upgrade-postgresql94-develsuse-upgrade-postgresql94-docssuse-upgrade-postgresql94-serversuse-upgrade-postgresql96suse-upgrade-postgresql96-contribsuse-upgrade-postgresql96-develsuse-upgrade-postgresql96-docssuse-upgrade-postgresql96-server
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.